d44931a4099102cea5b0bf1748d6a446d49a87fb8f50f033d39c8463bc32482e[.]zip

General

Target

d44931a4099102cea5b0bf1748d6a446d49a87fb8f50f033d39c8463bc32482e.zip
Size

862KB
MD5

b0c542b4b68954ecf4900e5e68d4fae4
SHA1

ce3bc3c71362946356510eb19b32336e205b93d1
SHA256

d0725152868a05952071d930aa7e96394614d0a3050ada8b715a05743c6aa0ce
SHA512

f5e768af733056d2c4bdea5c7484c4142ab46f8ade752d495b58b490bdb88b757ff8415f18deefda7be66fa838a2a171a2e884eed829115c87f3fec38aa6a70e
SSDEEP

24576:ZMGAy7PNdMWAzttmCf+Bgt1imutb3kSJFSNT7+Ov2:ZMGB7PNdG0Aift7fSNTre

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d44931a4099102cea5b0bf1748d6a446d49a87fb8f50f033d39c8463bc32482e.exe

d44931a4099102cea5b0bf1748d6a446d49a87fb8f50f033d39c8463bc32482e.zip
.zip

Password: infected
d44931a4099102cea5b0bf1748d6a446d49a87fb8f50f033d39c8463bc32482e.exe
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ