a8fe3bd91efdb128a8af2b53a491db19[.]zip | Triage

Sharing

General

Target

a8fe3bd91efdb128a8af2b53a491db19.zip
Size

944KB
MD5

f554c7e84f6aaa3d92f102005419c2bd
SHA1

259d688aa13efa419d4bf06769ed2c5e1ceb22da
SHA256

31ef305f6dc5868757ed3ba58cb3f04788c483a0fc1f5b73da3d294c97a1791c
SHA512

b4dcd37c938d1908d9747cf4a97486be4b0e7a60daef3a229c9994e613acd4b261a4214b7668cd5da7ecf713618921f92bfa67dbfaf4c1d7434c536eff3a1111
SSDEEP

24576:4uDuvrX7U7OLP5kpMnsC57h+hmc0S5nAuhQtKaJdbH:DDqXA0UusCBL8ZtOtKaJx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/02f793ce2cb034d7dcfcded102cf9c38718469125e92a0cda9ddf6bd6ce5ece1

Files

a8fe3bd91efdb128a8af2b53a491db19.zip
.zip

Password: infected
02f793ce2cb034d7dcfcded102cf9c38718469125e92a0cda9ddf6bd6ce5ece1
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE