CP57Demo[.]zip | Triage

Sharing

General

Target

CP57Demo.zip
Size

2.9MB
MD5

077071ad42c47ff740a9674fd9ff5481
SHA1

3233841da0e0e3838f6242d0dea27b625efaf526
SHA256

f49bf96d979d3a6e1b57a87d38e1d000151dfe86dc4aaad5bdfcbef96cbbfdb0
SHA512

2f3234239c98318833e3786d3bc0c0a618eb4aa706a0521c38d5ef0f60e253b5a9c97a2dcee2408c5ec0610a3e3415833adbbe96b803f48ef36a1afc3e8ffc1c
SSDEEP

49152:plVBmQ2t6BcrhCZewOFA1vjZ3dcKKC31hcyt+gaUiBbti/ekg+slI:/VkQ2scrhn5FABtD9316ytOUehkTp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CP57Demo.exe

Files

CP57Demo.zip
.zip
CP57Demo.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Readme.txt