58fd02a06856bf82feb8e7bbbc72ebcf[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58fd02a06856bf82feb8e7bbbc72ebcf.zip
Size

7.3MB
MD5

a318bbc79c751743530392ee0d79f42c
SHA1

ab02cf4758e2eda5a7ffd0918723cf6ff5e3ea27
SHA256

96655dafd698e5496dbec6ceb5820e2d7560e7b67464120728b090d2e3f701e1
SHA512

487e6b415b15e8da221fa9c8a00b77d0360f3618f21f5015df892034c6dc03883919d45408c777d248d90328a651620b8edef1ea62ce3f887bfd9e2950ef2aef
SSDEEP

196608:GsxYVW+7MWGDuhttO/iYVU7eMwo1CFMxmpr80mmPjgo3F:GsxYVW+7TGDwLBwOC4Er80mmPkI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/b6e2e03fe53a5b9efea3f8657e5152b6cb8cbb3220d4a64792bcea60ce551547

Files

58fd02a06856bf82feb8e7bbbc72ebcf.zip
.zip

Password: infected
b6e2e03fe53a5b9efea3f8657e5152b6cb8cbb3220d4a64792bcea60ce551547
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ