db6e38621f20dd9d462b2c5517174bf05d8c5960bb4bd60fe2d8465977a2966a

General

Target

db6e38621f20dd9d462b2c5517174bf05d8c5960bb4bd60fe2d8465977a2966a
Size

382KB
MD5

89ad6fad48cba924feb524444a620d0e
SHA1

ec8153e2d9d2ed6be10debb3d3deaea84130bd5a
SHA256

db6e38621f20dd9d462b2c5517174bf05d8c5960bb4bd60fe2d8465977a2966a
SHA512

cec67129da4d754567dfbc028bdc0c65fcee9b518bcfd82cdc29c969c45c11adcce83551dda8274dd8c86cc7dc2a0abde9340cae4a263bcf1bb9160417eccdae
SSDEEP

6144:Jn6TIZLnlu5t7Tmjsq30am8bYuAR1l9528OAK2ii93MbjRJQeiEQ6KBiiDsslL4U:V6TIZhuXvEsq30aWuw1l9528xK2oPRiJ

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/9417f8e2ba9a8cedf58f63a7407fbab7f2f8e8d34a899f8d85a75fd020ae3014

db6e38621f20dd9d462b2c5517174bf05d8c5960bb4bd60fe2d8465977a2966a
.zip

Password: infected
9417f8e2ba9a8cedf58f63a7407fbab7f2f8e8d34a899f8d85a75fd020ae3014
.exe windows:4 windows x86 arch:x86

acedd3ed6c447e7280fccea28e629ded

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA

ole32

StgOpenStorageEx
CoInitializeWOW

shell32

ShellAboutA

user32

GetMessageTime
GetOpenClipboardWindow
GetMessageExtraInfo

Sections

.text
Size: 452KB - Virtual size: 456KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 238B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE