00b64a8f000a39d92c926d80c605708ff54f16b0da9a0ba001515e7fc185fb4b

General

Target

00b64a8f000a39d92c926d80c605708ff54f16b0da9a0ba001515e7fc185fb4b
Size

1.7MB
MD5

9a60773af64dad81aae3d94abbe700ac
SHA1

ba78ba964bcb7bc437e266288175c25d97d13fcd
SHA256

00b64a8f000a39d92c926d80c605708ff54f16b0da9a0ba001515e7fc185fb4b
SHA512

bf9547b9713c06906e726db9d86e80251bc3f34727d8c6a0dc26ec5d89c6afbf535a2841802fc81f8fa38cfc316b21b47b6daca3edfd4fe62e159521921de1f9
SSDEEP

49152:YxN5RJiU1Z0EXRelOE0gU2ZXJl5HfNE/jN5DS:YxLbT1ZNXRelO6HJV6N5W

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/29c0837a12402c5c105fb2f2d3e31010b244c6ec0c437b3b7a977709f981d481.exe

00b64a8f000a39d92c926d80c605708ff54f16b0da9a0ba001515e7fc185fb4b
.zip

Password: infected
29c0837a12402c5c105fb2f2d3e31010b244c6ec0c437b3b7a977709f981d481.exe
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 79KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

caucbfep
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vqlijbqh
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE