41cd3e86cd46402032ac419ebf57421fc68a932dc9157d4f4b994b4f7a57b511[.]zip

General

Target

41cd3e86cd46402032ac419ebf57421fc68a932dc9157d4f4b994b4f7a57b511.zip
Size

11.7MB
MD5

bd5767651a1fc48ce5149fdeb36f194d
SHA1

0d95ccdea2eb6050cad249e2f54e21837675f385
SHA256

fb380886c956ab74d6a9fdc4c41101a7be027e9c628cb6b3d30130f7e350b743
SHA512

8250948d19020e148b57ac66798d354fe30e5c8be2fefddb2e4c232ff8663ab6bb6e88c142179ba8b69d96dff0cd559808fd36bcbb76c0d2e8278fe692aa5293
SSDEEP

196608:vEehRX2g+hQr30GOAgLaOzhwUzeNc5/fG2VeM0K4pXtmzp5HRyDRlxy/R3Rn:vE6XV+hQrdgLyUae/OG0KoXtVOvn

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/41cd3e86cd46402032ac419ebf57421fc68a932dc9157d4f4b994b4f7a57b511

41cd3e86cd46402032ac419ebf57421fc68a932dc9157d4f4b994b4f7a57b511.zip
.zip

Password: infected
41cd3e86cd46402032ac419ebf57421fc68a932dc9157d4f4b994b4f7a57b511
.dll windows:4 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 17.9MB - Virtual size: 17.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ