0c7932b0ae79d50eb68d038287d9df1a[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c7932b0ae79d50eb68d038287d9df1a.zip
Size

225KB
MD5

2ebdf4ed4106891c2ad3380008578624
SHA1

04a15ede2c9c71fcb75bfef58d2b96a935ec6c16
SHA256

1b5e12bdbe4bb8d64cc1e16193b5f127c3dec39100fa2b217e2075b0238f7a9a
SHA512

89e898789300979e7ed98daccfaf2b40c891b4af35a7d189ceffa7389057ec5905e7a8c372ba78d729b4bd106b86d780daaecdec73dfabb688106a92c85868ce
SSDEEP

6144:pCQ8m6MMeFinw0lXpu0zKK4oZw0UzcTXecxhiX:pCHMMeFinwAXrUoZoYriX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/60c20c0fdb084c432038cbdb33d83de71e9ae19186f269c86904cb158988265f

Files

0c7932b0ae79d50eb68d038287d9df1a.zip
.zip

Password: infected
60c20c0fdb084c432038cbdb33d83de71e9ae19186f269c86904cb158988265f
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.data
Size: 1024B - Virtual size: 996KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 260KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE