15644abb6e179d583d61094eaa26b6ef[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15644abb6e179d583d61094eaa26b6ef.zip
Size

95KB
MD5

a3301a9ddd150e29a6a0d5b4942220da
SHA1

d8c8d7879b2c13423ac98a72621e8fc9560d60db
SHA256

8724b2e91b1699a1a4be299cec44cf360ef86e37755f0d9a7191a24dc5141e29
SHA512

41b396d79e263f67c18e5ce5ffc477c064fb2395432fd4f95ea2ea302c0c088468bb32abff8b58b3a49d96bd9225c7698ea6c454c81810a54c5109eae09c96de
SSDEEP

1536:woAgE1YbqsFhzk5WwGKyjMRRcL6A+tC1AGHczTK5L2S9wryuWsVkRafWRbmgIggV:woAgEqmsFhzkAREcey+GH32S9cSiKmJz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/fb97b730cdc99dc641c7b752cd30ef268a0fbc434ead53443d1e8c94d43b57db

Files

15644abb6e179d583d61094eaa26b6ef.zip
.zip

Password: infected
fb97b730cdc99dc641c7b752cd30ef268a0fbc434ead53443d1e8c94d43b57db
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ