10082024_0408_08082024_Scrin_oplati_08[.]08[.]2024[.]jpg[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10082024_0408_08082024_Scrin_oplati_08.08.2024.jpg.zip
Size

1.8MB
MD5

6fe7477889527166ca3b5cc2f03e4373
SHA1

290f0dbd7f8cf7d3b8ba296e5ffd7249846e27fd
SHA256

99c89c332895a4fcb19f6f91c2304119941e1be2688a5c3a40b30bde0a203859
SHA512

2a17ec31b5d45ba80237aae9cdc77b4e658e5aa0cb2a24d06fa6cc91e0793a9e1090bcaabb0e8c6f2041a2568706c4b4c89c9fdf2074d68686dfd6201f44c3f1
SSDEEP

49152:SDaJaUYzxu4Ej4lz6AE87eO7bsuEFg0Vvps3EbKVWZaT7T:SKG1z6AE8KO7bcdvOUOV2aT3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Scrin_oplati_08.08.2024.jpg.scr

Files

10082024_0408_08082024_Scrin_oplati_08.08.2024.jpg.zip
.zip

Password: infected
Scrin_oplati_08.08.2024.jpg.scr
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ