f7ca1ca80dc9ad507ac644cfdbe26284[.]zip | Triage

Sharing

General

Target

f7ca1ca80dc9ad507ac644cfdbe26284.zip
Size

157KB
MD5

33b2158ac30883465b581fad2a27e2c3
SHA1

0fc7eef1738190285343e911fefc969a206abc6d
SHA256

70cee93222529492a9dfdbaeda4bdc9e12a4f5485ca24e1bf9436a3a776c19a8
SHA512

a3b693b4cce243f06f88c80f63d9c84ffdb7662af700670e3ae1a345f1a728a48470940a769ed0f0c674a2f2ce32950bf00e917e98f35518c00c09252fbe1d74
SSDEEP

3072:yPaHX+qpjkHjTpaL+NKnF3U3PZ8eE4z/2iijflJaM12fZo4xEe:yeOnW+QnF3Uh8eEwAfTHgh5xj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d2f28457b579e784425560c3f625e5aa910976fb4ac9816edd8e4e7e8acad34c

Files

f7ca1ca80dc9ad507ac644cfdbe26284.zip
.zip

Password: infected
d2f28457b579e784425560c3f625e5aa910976fb4ac9816edd8e4e7e8acad34c
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

yzPzORmq
Size: - Virtual size: 100KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TGOqOPny
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��{�
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE