1df4cb90a9018f37dd1144adbf47adce[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1df4cb90a9018f37dd1144adbf47adce.zip
Size

683KB
MD5

4dd109ad738a436d99362682dc30d18a
SHA1

b059d013e4c66078a2ce29a2eb15b50d78092ed2
SHA256

062af8a81afc38b63b479e4e1d25bb5a3f4cf381fc546df552b9248865e3c67a
SHA512

ef608bbd95bde8d20bf3cd6928eb8ed3f236396cbbba6add93d98e0aa81e0ac2a7402dd6ad8c3d41591a4dabb1ed8a1f8c45b78fd3d0b4d7c8267ed1c4d4105b
SSDEEP

12288:es7+WOQzogEsoqvQhbwBI+xijI9Kx5sqb3INtNHVR4VcQesCohUysllUfF:esbOQzTo8lq+4lx5sG3ctbuesCoB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/daa37327b215855ed8d6a93df58911b694175fd5fbc5ae5444eff2bafc9c9512

Files

1df4cb90a9018f37dd1144adbf47adce.zip
.zip

Password: infected
daa37327b215855ed8d6a93df58911b694175fd5fbc5ae5444eff2bafc9c9512
.dll windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

uioegegwhugwehogwewgehwgewgeiwegwegw

Sections

CODE
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 107B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ