1151df00b4c9e3b0343d842b93727b30494e6d094f550b99553a6e822053c236[.]zip

General

Target

1151df00b4c9e3b0343d842b93727b30494e6d094f550b99553a6e822053c236.zip
Size

621KB
MD5

4c96be3b2c688deb5d16a821c36a2f68
SHA1

71359f1f67b309c9c65e33d21c05fa40a0912d57
SHA256

f654ea1657592973d0f4ed61b134b01179a9d415a0e5ed73120d361059163d10
SHA512

cdc85ab39e84cfe17c8815b249152a25c759d6bc3d5a01ce8caa4b1dd943bd3cd43f3e07fef5e97ebbddb64e57a4cd1045fb34e75aae68a0ac58ef63ade1a3b0
SSDEEP

12288:m/YucqmvIVx4SFSZUjT4uTExeWUDUnMHmu9XxCKF7MN14fkTsjf:m/Hcqpx4SFPOR2UnMHmWwS7q10

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/1151df00b4c9e3b0343d842b93727b30494e6d094f550b99553a6e822053c236.exe

1151df00b4c9e3b0343d842b93727b30494e6d094f550b99553a6e822053c236.zip
.zip

Password: infected
1151df00b4c9e3b0343d842b93727b30494e6d094f550b99553a6e822053c236.exe
.dll windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ