ba15f6953e7dc22f8a4e221d4a110425[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba15f6953e7dc22f8a4e221d4a110425.zip
Size

7.3MB
MD5

a5e3d36c4468c50129609eac2e188894
SHA1

c359c0ce00c523207c58b35c3cfd7e4e3af610f8
SHA256

5b422d792a66d4e38304805b48476010ae94d3623bfa33f8a88fe6ab3e80c455
SHA512

13309c971a0d1a5e65f67516c9754bbde4aaa389aade04d0bcec838a8047b37ec64293323e10017adbfd85fb53039b676e3b2be9fafe5ad09be6e4492ffbfd4c
SSDEEP

196608:CfAv7ZKSIyC01QJpZGGOqLo7owPb4lBgAdLoeb:CfAvgcC0AjK7opBTdLoO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/520c9bf68a321c7882db7a06b9e34bda1759b3926e251bb91eb8dd6c57ebae1b

Files

ba15f6953e7dc22f8a4e221d4a110425.zip
.zip

Password: infected
520c9bf68a321c7882db7a06b9e34bda1759b3926e251bb91eb8dd6c57ebae1b
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ