3137b767dd9f3d5342454beb36cc3e5538a031f1fa5aa9759ff030eaf55f9c6f[.]zip

General

Target

3137b767dd9f3d5342454beb36cc3e5538a031f1fa5aa9759ff030eaf55f9c6f.zip
Size

167KB
MD5

b9813a71df7eacb3c1e0b38ef12debed
SHA1

d4bdf2fb723488bed3e246d4d6f833aa5fc05305
SHA256

64c8f0bb2d988c9045aede48140c92af4f2c4c1336248546c6a72a745d5b81e5
SHA512

1bad14428c6dddc41001c92c260245dbcbeb4ff350c8b60cb57f61df9f4d36d912e3a777457515eb89601f4e5aef04f4240b87dd05fb3eb8eca2332f21bba200
SSDEEP

3072:Sm1R5QxkfPT2RnOIJj2PnP1A1CQkr+T9Fpe64Ijm6KPgVq:NS2j2Vvj2/aFy+xTel+m6ykq

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3137b767dd9f3d5342454beb36cc3e5538a031f1fa5aa9759ff030eaf55f9c6f

3137b767dd9f3d5342454beb36cc3e5538a031f1fa5aa9759ff030eaf55f9c6f.zip
.zip

Password: infected
3137b767dd9f3d5342454beb36cc3e5538a031f1fa5aa9759ff030eaf55f9c6f
.dll windows:5 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ