c1d9116cc3e8c0a5dd0831970c87407b[.]zip | Triage

Sharing

General

Target

c1d9116cc3e8c0a5dd0831970c87407b.zip
Size

95KB
MD5

70517d52238c09bd329a535ad1e53cd7
SHA1

3f55c405989673cbc88f42f1ae912573b8e2bc1a
SHA256

6ef5ba629d0917699a973bcc730f8eb59b6e072a7d5ea504e08ada54b1554e1d
SHA512

e833e2dfe167a6c94bde69bcf64b15d2029945da685aedf8cd4627a7b855f22eb85f2c8020df082fe0bff7a9f3f66bdd118a36a8ad7b6b5dce1fe390ab2cdb07
SSDEEP

1536:lzSfmvXjjqKMmGdfQOq1B0SPUjLFOnAPxiuu15NMLv06tblIFg7IbcDQunjJQTH0:xaQjjqKMVXvSs/IA8T1srbtblAgUbGQw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f232c11b1d855ae4f4d0fe577873fd331f6ce33ea3dee2c55d39987c3bcb599a

Files

c1d9116cc3e8c0a5dd0831970c87407b.zip
.zip

Password: infected
f232c11b1d855ae4f4d0fe577873fd331f6ce33ea3dee2c55d39987c3bcb599a
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gw
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE