bd1b63b8f418f2f81dfdd30771ba1de2[.]zip | Triage

Sharing

General

Target

bd1b63b8f418f2f81dfdd30771ba1de2.zip
Size

392KB
MD5

8de958581c6f1bc184e860b889a6ccc8
SHA1

6db4a38d58398e6b85d9ad387567d9f1f4464e31
SHA256

d7a4af0b2cc553ae6000075001b52f53c9c1a694708610d6a8b427697b17fb44
SHA512

df02278e89ac87def614cb02ee5c5eb15e5cef9d03239e0a6fe7d7a6b42d3b90ed2cd491a1be0491bf9c91bc92a9770c3e19c8337c5cac893350f70fffdd9184
SSDEEP

6144:Z7aI034zmD6WKpeRsExOv6ksSYVKZ9fyrleyOyYootrLXRhW0Yw0xKTQqti3Weoi:oI034FpeXm6CHZlyrEy1+5S0Yw02ti3B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack003/Curriculum Vitae.exe

Files

bd1b63b8f418f2f81dfdd30771ba1de2.zip
.zip

Password: infected
1e996bace5e1070c4a57bc02bad02a02c90ca14ff1632a92af753f16140dd1aa
.eml
Curriculum Vitae.zip
.zip

Password: infected
Curriculum Vitae.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 398KB - Virtual size: 398KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-1.txt
.html