7e9f37bf267200eda2c91762d924100f24ba720496b8972908ff9f68c889f255[.]zip

General

Target

7e9f37bf267200eda2c91762d924100f24ba720496b8972908ff9f68c889f255.zip
Size

2.3MB
MD5

1b0fd6c34bf27f6a9139027bb3675a01
SHA1

218f73c8a263e91923be0479ba38da1ac27677e2
SHA256

62302e3a23d49a9c975421493e5614339041566a958362f8cc494bb74cc2606d
SHA512

79e05f3277f4af396ef712c053c718f9235712f5833489ad187bfaf32c09898cdd201327dc30fece680e20f9f0ec5bac87ea412fe9e187610b35dd077872a4e2
SSDEEP

49152:4Tt6dtFpwtFj6yNE284vsbvjQtdLebeyf6ds+h2MNhzdJJ:4TtetFatFjv84OL6UbeQN+7hF

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/7e9f37bf267200eda2c91762d924100f24ba720496b8972908ff9f68c889f255

7e9f37bf267200eda2c91762d924100f24ba720496b8972908ff9f68c889f255.zip
.zip

Password: infected
7e9f37bf267200eda2c91762d924100f24ba720496b8972908ff9f68c889f255
.exe windows:6 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ