ef706458d93cea710c484f18d659535b[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef706458d93cea710c484f18d659535b.zip
Size

4KB
MD5

f19c5f2c9c6c454b5b07a2fd39d8dc7c
SHA1

7c00837c05b905895b82a37f2c7ea7199f94092e
SHA256

f694efd5f9b2905add43b750815a00538b2c61f6a7f1cb3cd9f499aa65a09998
SHA512

91ac1fc3d62aa6abafd4d205d1dfdcb16861e78233cceeb36f99966cb2d216ddf6fefcfbd29698f9685b9fb30f47310ef5d070ac95185fb565291f31c50f34e8
SSDEEP

96:wtwBl0VnDCp2hJ+5cP+U1z1ufwXBUXJSuVJQfY9Aim7VTEcd44:wtEKVnWEp+U1ZuVSuVAiqTE844

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/36790a449cdbf1c74d0105aab64b0627a0be1a254f6accbc40446f4be57511ed

Files

ef706458d93cea710c484f18d659535b.zip
.zip

Password: infected
36790a449cdbf1c74d0105aab64b0627a0be1a254f6accbc40446f4be57511ed
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ