962034f54d0eac42b597a123df17e132[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

962034f54d0eac42b597a123df17e132.zip
Size

562KB
MD5

7c77776235be9ea54c93a042074ea782
SHA1

4823d05a8c523071bb0cb194ab90fd4781f2cccd
SHA256

f6b9ff3aec3f88cb811dc31e3d5d188698dde1698b127cc0cd90535bf0da61a6
SHA512

f988bda0b0b87be79debbaaf29b88f6c240d78024dec5a331e0089503e5460138199ee11372ee80313e5c363fa78101059ca6979bcbd8f052dcda162071d842a
SSDEEP

12288:3B4ZcPopIx6NFlDkS56gJr2uvFwpQzhHj35hItKO1751VL5bw0:RUuopIABk1gJr2yFwghHj35Gf551BBw0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/1f4dc5c89721bb972beb619aab6d3767c03b12d102523a12d16df7d36c24ed75

Files

962034f54d0eac42b597a123df17e132.zip
.zip

Password: infected
1f4dc5c89721bb972beb619aab6d3767c03b12d102523a12d16df7d36c24ed75
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 779KB - Virtual size: 778KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ