954bed9041843fda1f71ccb53ebcdc7e[.]zip | Triage

Sharing

General

Target

954bed9041843fda1f71ccb53ebcdc7e.zip
Size

4KB
MD5

8eb0354e91c675cd4998ec2417b29685
SHA1

ca980fb92814a20ce153b2da1decddefeee87aea
SHA256

b2eb301cbdc7dd4ec54aa71ebfeb387d38de594d6a32d51dede04182eb595db9
SHA512

363c7b81fa4a9f47c22b3fb11352c06479e7530e309e3cdc9b808633a84f37b81b7744ddcb24f3b4f65492c1c2c5c583331d6f93bd98363207b8de4c7ea924a6
SSDEEP

96:GHR2yjSsk6xRRYPIQIXH11KidJ9cJndMLLLqbeyV1w0xmywE9qHwr+HM:2X7KdIW8aNevqbeyx5FAwiM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/40ea1ae2be44a9f288a0d4f2d0e326665743e5d670e24eef98be38aa848f8564

Files

954bed9041843fda1f71ccb53ebcdc7e.zip
.zip

Password: infected
40ea1ae2be44a9f288a0d4f2d0e326665743e5d670e24eef98be38aa848f8564
.exe windows:5 windows x86 arch:x86

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE