89aa5a0fda1879c30aa8dbe78a653f3e[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89aa5a0fda1879c30aa8dbe78a653f3e.zip
Size

98KB
MD5

996b573cee5286e573814a35ee3ea673
SHA1

e2e0a9ee64066fd4cf4d23a7995ad972d98c1703
SHA256

172f33af54616bf550f73b2dbbf61739b0267757853b5d7a67ae459fcedcd37c
SHA512

a8e6b6ed9a395306ad271a684c4dad0a89b6262f85e4f9ee1c01634d0d3302c679692b3c6e4d9b9b35b59a4243ba8567472f61df4c6eaa3ff54b9ce47fe7d708
SSDEEP

1536:RG8igaVot2UN1ct5QFqn0eAlmS5Tm4SWhc0fvas+IgNbtQjx/5:Oqt2UN16jAlmSRma2ESs+JK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/29c45a046d058cb7417e88bd109541046a2cba16c48c1bfc285d64e02822140d

Files

89aa5a0fda1879c30aa8dbe78a653f3e.zip
.zip

Password: infected
29c45a046d058cb7417e88bd109541046a2cba16c48c1bfc285d64e02822140d
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ