0eef7ba047edc267e0eb51190604d75865353ffca3e0877655da0a9235cc04ca[.]zip

General

Target

0eef7ba047edc267e0eb51190604d75865353ffca3e0877655da0a9235cc04ca.zip
Size

11KB
MD5

307c8c01a59e388ad5f8e22b77ec52c9
SHA1

bded93545525aff29a2a64c2383dfcae1901db7b
SHA256

53c17d5372ff30ca66be77a27b9a2d25f41a00736850d9a85e169b6d8120f997
SHA512

c5540f7882a6c02b7329a33bf77468876fb8368798395a32d9d37d255bcc36bc4c814ed5363ca0da0ee2c48a70640074c6041341b8fe3e3a3807244c9bf097c3
SSDEEP

192:nfhdaNEzo2z6llxQPGBn1ZkAnZjQWpNvuIyrM2UrlVdQ4KpFenOhdJst+OOV6klP:nf3oTxQOiAQWpNvw2rlHQ4kJsVOVB6JM

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Devcon.exe

0eef7ba047edc267e0eb51190604d75865353ffca3e0877655da0a9235cc04ca.zip
.zip

Password: infected
Devcon.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ