d77b9ed3830842c8a90761816ee2b229[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d77b9ed3830842c8a90761816ee2b229.zip
Size

144KB
MD5

dd4a55fe95fb49a4d53a0460d3762008
SHA1

166231f832cf75166ffd60e54e9138b38f53fecf
SHA256

055857df0e8d90013d0c36395cb3d5049b4479768541119f54ecd7b5c08e793f
SHA512

8de54b673fc6554ee3facf14d85fb5ec4aa3f51a8d75f2230130f5dd20e5a0706bcad4128e11e156bec618caa1e51f2fb28b2455f42f34cff1fa83164d06b7dc
SSDEEP

3072:l1z6ahFxSiGEhxXo8MAz4rDh2HghGL//rLdyEdq07oSe5x:yanxSiGwYNAKQgeLdyQqkm7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bea1786e9ec41a6684ff7a328455227989a9929b7295b1ec9b557a916c9f42df

Files

d77b9ed3830842c8a90761816ee2b229.zip
.zip

Password: infected
bea1786e9ec41a6684ff7a328455227989a9929b7295b1ec9b557a916c9f42df
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

MEW
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�uۊ��
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE