cc452e631aa8ede04ec4d7f9bc7ba650[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cc452e631aa8ede04ec4d7f9bc7ba650.zip
Size

742KB
MD5

9a34e6377062098560bac39693cfe25a
SHA1

5b65950b15c37df652163da25860a22c9e65d002
SHA256

e215692658cff912dafef6cef18ba02a2aa543fc0003b15b432667fd3a9bd3bb
SHA512

8b7f1f7f86e31e94047394c2b4027973f2fda2e82ad7171cba4498c86390650ff98e845fa476c0338aca67a02f80681be76a4c2a940d5a44323222a775e9cc08
SSDEEP

12288:kf7casC2rXcU9OVswzGRciWesilFxkSeg4MKAlcBdLOPRHFWKF7bUJtL3dHE:47sC6Xw6wzQWzitxevM7gdLOPRHF3sJg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/238a3f599274a5816c5ca0e17fe9a01902b46b9e7adf979f368e8a15c0db7a1e

Files

cc452e631aa8ede04ec4d7f9bc7ba650.zip
.zip

Password: infected
238a3f599274a5816c5ca0e17fe9a01902b46b9e7adf979f368e8a15c0db7a1e
.exe windows:6 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

bckgzm.pdb

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ