6a18a922e4140fd7a00aeb747619daee[.]zip | Triage

Sharing

General

Target

6a18a922e4140fd7a00aeb747619daee.zip
Size

167KB
MD5

8b7240d3a86cafb39f6a6d3191c0f22f
SHA1

1631a47f4c5b687ab8a48fbaac17e18e3ef166e6
SHA256

919c8c8f01a07812198ada16472f2f3098673686956f89b11f1f2f464c8ea71e
SHA512

9a6087ed922e43fff54c528113817feebd27e80bcd2dbce4e7026d7c1325bd75954e3e9a9a7ad96819341d0db9b56b477c8138b1c8f2b68c9e96d336947bb89e
SSDEEP

3072:1UwV+OnITsZBPoWwd/YgjasW3hp80ae126tjnLOimuOYJjeLibyf0nh:mw4OITMVGy3H8xeIgPBeO+snh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/fc65bcbb6a297dbed9be1067d2f67f921d21b9d2202f134f7a7c397148e93d33

Files

6a18a922e4140fd7a00aeb747619daee.zip
.zip

Password: infected
fc65bcbb6a297dbed9be1067d2f67f921d21b9d2202f134f7a7c397148e93d33
.exe windows:5 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.
Size: 165KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE