78d75785b308bf3e64bc6a05a07d54b786200ecc033df417915f0223a19c2533[.]zip

General

Target

78d75785b308bf3e64bc6a05a07d54b786200ecc033df417915f0223a19c2533.zip
Size

609KB
MD5

6a41625ce0e1f1131a9333372df754a8
SHA1

afdc812a37e0e21f7e194d17c00cd943b6a0a59b
SHA256

ccde323c0d3db93095382c1e0c84c30f9eb985d9e2ba28d67108d912432fe7c4
SHA512

99a2b179616d212b7e5261867691ba4c66d81d7838289fe26ea35587285b0bc09ef37fcec5e273164382cc90279a8ed1d1ece3d40cf2087a7ce15e18047ec7e2
SSDEEP

12288:M9fW4In3b0Neus1HdidHUySvgvYrFCmwkm8PchyJbtj/ogtcNo3j:MY3husO0sVmwkmAdJBsgSNoz

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/78d75785b308bf3e64bc6a05a07d54b786200ecc033df417915f0223a19c2533.exe

78d75785b308bf3e64bc6a05a07d54b786200ecc033df417915f0223a19c2533.zip
.zip

Password: infected
78d75785b308bf3e64bc6a05a07d54b786200ecc033df417915f0223a19c2533.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 856KB - Virtual size: 855KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ