dc2a5836d3be7c0544ace37c009b16488167efcf5c3d56e7cc9603f1a4a40187[.]zip

General

Target

dc2a5836d3be7c0544ace37c009b16488167efcf5c3d56e7cc9603f1a4a40187.zip
Size

2.4MB
MD5

69dbe71890144df637cd4a1f6ec2bc91
SHA1

81f0ab915f1e8cb2b0926592855c92cf27478f69
SHA256

f5d253bfbcb8d419f50e8f9b2a16a3ac4ba710e956831765d1929ca161782a14
SHA512

80130f2c83d4d1d2ee76f97695717ef3313a808dd9fe02b4ec6617b448db81a21e60d0a7637317396164e2e0303c2bb8a381482353b5b5fc062bae5639c261c1
SSDEEP

49152:nud/TMntjbDbVs437OPnTPL3+wgWaSLuc1aR4qnXpWK2VKJ62FCFjUmlAHjVXH8r:nuFetjbDbVFuXQWaSLj1aRvXptCKJTST

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dc2a5836d3be7c0544ace37c009b16488167efcf5c3d56e7cc9603f1a4a40187

dc2a5836d3be7c0544ace37c009b16488167efcf5c3d56e7cc9603f1a4a40187.zip
.zip

Password: infected
dc2a5836d3be7c0544ace37c009b16488167efcf5c3d56e7cc9603f1a4a40187
.exe windows:6 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ