94b3f60ce09e1ce59051c6ac3c0910ef[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

94b3f60ce09e1ce59051c6ac3c0910ef.zip
Size

268KB
MD5

f24653a7ff5066fc1c3076f7cdc16445
SHA1

c99850174bb2c546707e9715e59e43ebde27dc46
SHA256

1828e601d797a6f5222d71e7f419d5789b0ec3b7efbe8c8895d9b6c7e27b9a8d
SHA512

e03effb80cecf3c16295faa6404938084745f1e096b5240fc61bcc9f72fc19bc370ef114f0fb5de556001571ce81ea33045546892cf1f3adffce6bea571f88ce
SSDEEP

6144:zpYpg19qK5+QQoxidHQAjTSTzWEprVALtDq3wUqmrRAZhPIznY:BEKkVHQAyR/qQgUhtDY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/c59eb6d8ac6774b7a93140189e773bed9c57a8c2a42996b72ccd06c543dc678b

Files

94b3f60ce09e1ce59051c6ac3c0910ef.zip
.zip

Password: infected
c59eb6d8ac6774b7a93140189e773bed9c57a8c2a42996b72ccd06c543dc678b
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ