e690e2854aabf1536308bd57388404b26b23180eaf2e767d3d153393efb4ec00[.]zip

General

Target

e690e2854aabf1536308bd57388404b26b23180eaf2e767d3d153393efb4ec00.zip
Size

692KB
MD5

f8bb1767401dd27123fa8c3a28cfdf28
SHA1

e27a01f2bdccab51abac497b9df4f5534c17c680
SHA256

46674daf2d107fbdf3c6292c5e59025ede5c587ff68317999063dcd140b72d9d
SHA512

d4960caf7c108fb938c9d6560e279aeb629ada28c139abfff7193e51932fe7a02279c2e9d712a29a3aba9db119921037c43548a0f712adf976dad1b1c84a7f91
SSDEEP

12288:zBOTyFGD7d9JeHw1NJtke6jtWNlQDAVxuH2Ggd00WCGB1CfZirJffkYN:zBOWFGDJ9AHyN7V6jtWVUJC0KGb3rJ00

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/INV&PL.exe

e690e2854aabf1536308bd57388404b26b23180eaf2e767d3d153393efb4ec00.zip
.zip

Password: infected
e690e2854aabf1536308bd57388404b26b23180eaf2e767d3d153393efb4ec00.rar
.rar
INV&PL.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 718KB - Virtual size: 716KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ