2d4a5b9016f45f8bdc9b9033427ba4dc[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d4a5b9016f45f8bdc9b9033427ba4dc.zip
Size

7.3MB
MD5

5d58b82c35f5f32ef576799208ca006f
SHA1

2886edfebd1ab85a1c837e50a9346b7047b8a7d3
SHA256

dec7afb333f4c9d211a84b522b51fbee3e6c14500c21775399a281a110221899
SHA512

a6a1ef4d9dc97fcec86791be2ebd6e5ba90d7a69d74bb16e843d44354614da62c9617161f5e17f4b4fcdcf70e3a192dc4a922a35284e463f9ca7861330eec049
SSDEEP

196608:FQg1Jy8k8RHv5BxdhprN0xriezbnfRN25cRM:FQg1Jy8ZLBrhX0xTHucRM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/a8804aa9f179797278782b16b9841bccba0eaae68526a8994595f4a92ae24819

Files

2d4a5b9016f45f8bdc9b9033427ba4dc.zip
.zip

Password: infected
a8804aa9f179797278782b16b9841bccba0eaae68526a8994595f4a92ae24819
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ