fa7d4cb090b31cd342f71d47cd10611b[.]zip | Triage

Sharing

General

Target

fa7d4cb090b31cd342f71d47cd10611b.zip
Size

567KB
MD5

d7f4bbfa58461cddc428205246268e46
SHA1

f5b505f711858b462ed7d5a8ef905380c9d74f5c
SHA256

a3bcaf7bddd9f3facaf48f79cd758d59951d4b8e50a8744d1f003cbfe5a97038
SHA512

624bc1b54ac2b4929b9b005550d4c186a1a682f7d3061c49c7968b9cb1b49dfbe4d646707001f1e00007411667c9787f23e7bfae1c495d12bfe6047e8a915c70
SSDEEP

12288:yem4wbaCpHLP9pwU2HwjqDBVlD0OqdzbUS7Cz:yNrpprFpR2HdlD0OIwz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/2ccebd1dd2000856f9aa8ef98853f7ead9a30857e615e094aa2079cdddd1252e

Files

fa7d4cb090b31cd342f71d47cd10611b.zip
.zip

Password: infected
2ccebd1dd2000856f9aa8ef98853f7ead9a30857e615e094aa2079cdddd1252e
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 715KB - Virtual size: 714KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ