01d68a163024c02be55b0d6b81cdf52f[.]zip

General

Target

01d68a163024c02be55b0d6b81cdf52f.zip
Size

127KB
MD5

27875d674bc657795531fe430ea8255b
SHA1

9e8a454c76b4c1b8222fe7056e58213791d8f7e6
SHA256

5ff922343024a019cb33fe6bb7a3d06585b8aa339818f75d3493f1d24c384682
SHA512

fa6e1344a2c120e80de4158e0bfb375afb2274ab9d9539eadb9538965f0dc5d321282be930f01d25d2f1e78b95dcadd7c725a43ca57df6a8322749c67c4d2173
SSDEEP

3072:yEAqbQUF3rwLV1GQoe+XrYljkfvBdsgnABYwS:yEAqTlrwh1A/YlgfAgGS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/1b5fdbc26733b082191916aaed528dc1c5054a0ce22d4622f19c5b1a68ac08b7

Files

01d68a163024c02be55b0d6b81cdf52f.zip
.zip

Password: infected
1b5fdbc26733b082191916aaed528dc1c5054a0ce22d4622f19c5b1a68ac08b7
.exe windows:4 windows x86 arch:x86

Password: infected

9d77a5c9f39ff9e1b76cf5429788a51b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

_CIcos
_adj_fptan
__vbaVarMove
__vbaFreeVar
ord588
__vbaFreeVarList
__vbaEnd
_adj_fdiv_m64
__vbaFreeObjList
_adj_fprem1
__vbaStrCat
__vbaSetSystemError
__vbaHresultCheckObj
_adj_fdiv_m32
__vbaAryDestruct
ord593
ord594
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
_adj_fdivr_m16i
oCIsin
__vbaChkstk
__vbaFileClose
EVENT_SINK_AddRef
__vbaPutOwner3
DllFunctionCall
_adj_fpatan
__vbaRedim
__vbaStrR8
EVENT_SINK_Release
ord600
ord45404
EVENT_SINK_QueryInterface
__vbaExceptHandler
_adj_fprem
_adj_fdivr_m64
__vbaFPException
__vbaGetOwner3
__vba�bound
__vbaStrV�rVal
__vbaVarCat
_CIlog
__vbaFileOpen
__vbaNew2
ord570
__vbaR8Str
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
ord100
__vbaI4Var
__vbaVarMod
_CIatan
__vbaStrMove
_allmul
_CItan
__vbaFPInt
__vbaUI1Var
_C�exp
__vbaFreeStr
__vbaFreeObj

Sections

.text
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

9d77a5c9f39ff9e1b76cf5429788a51b

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 172KB - Virtual size: 168KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 172KB - Virtual size: 168KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 2KB