e79520ba8a09664645d9bf676f3bd96b[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e79520ba8a09664645d9bf676f3bd96b.zip
Size

166KB
MD5

9994c411d794c7bced8638badd9bfde5
SHA1

c42152668823bc37f710ae0e8884d57b238dea69
SHA256

5f53ef4f6d58a87f72e1c7e921049eddfd46f0e4ecd049c0027bd9f349fe3e33
SHA512

c4164ea4b641c8fce276db99c13e66cd0308fb39b69fde7dd627739f2a9569abbd16ea687558a53b13f6e17d7e89b0570ea61d799def1ce6677e47dd573f0670
SSDEEP

3072:BphE1BO+tSZZensiCiDpwKcpCDW3lqV4fMXu03rVxfht3dYoy92xmiaHEo:Bpv+IZ8C0pykDi+j+03rVxr3dYoyjEo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/49d57e422319b9ebb5a4f41fcb62c236ef4492bad6bb62ad758524f84e3938e3

Files

e79520ba8a09664645d9bf676f3bd96b.zip
.zip

Password: infected
49d57e422319b9ebb5a4f41fcb62c236ef4492bad6bb62ad758524f84e3938e3
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

MEW
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�uۊ��
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE