b47c77d237243747a51dd02d836444ba067cf6cc4b8b3344e5cf791f5f41d20e[.]7z

General

Target

b47c77d237243747a51dd02d836444ba067cf6cc4b8b3344e5cf791f5f41d20e.7z
Size

5.8MB
MD5

2a7ce12a5fc37e24aa63cbf17de1a61f
SHA1

013c606605f76a2a6e0e4e72a3a6aecbbbfecdd0
SHA256

85ccf4901d938844d57bed87ef9aa179df89505de4617e50a91600c288497bcb
SHA512

5970cf56e73b2f44898c91e5d4adec1063abb2693a41c0ebea3eb576035872acceb27bbfef880c9e9b8781790309202827c67d7402824b09b78986117cbe5d69
SSDEEP

98304:1uxP0HVwANJbsAfZzIiCTbfs3k/9pOSk5eKPOQd5ZnGu:12PuVlbbsAfON3CAOS2eKPpd5ZGu

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b47c77d237243747a51dd02d836444ba067cf6cc4b8b3344e5cf791f5f41d20e

b47c77d237243747a51dd02d836444ba067cf6cc4b8b3344e5cf791f5f41d20e.7z
.7z

Password: infected
b47c77d237243747a51dd02d836444ba067cf6cc4b8b3344e5cf791f5f41d20e
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

Sections

.text
Size: 20.3MB - Virtual size: 20.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 120KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE