c30c5bfe4a47809955c6028e05831322[.]zip | Triage

Sharing

General

Target

c30c5bfe4a47809955c6028e05831322.zip
Size

190KB
MD5

391e9ecadc03926932883624bf0f4ea6
SHA1

8d4a341468c69f2d975d109106cc346457ff688f
SHA256

0540aebf3e2abcd9c4281279a7f0a12d2dbd7679c62fe8163c6cfa64942b8617
SHA512

65112b40e3d3087219ec461632d9a4d73d3294f3f583839e9b28455edcb02a9d8c12cb4920a9290f6ddd0cc11b742b44a15d31d0e84abe406ac1a97187323cfe
SSDEEP

3072:T0nCoDfaDIo36Ib7EUnhisFulN9K2J1oaf1oaMq8/Cj4sDyJgWMAvtxTKU7iMmQS:OC+fk36Ib7EUnFgljl1oaaagCjrmgWMd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/f213930b2a1dc0818af0076fd7cb8f60178226c5d0aa14260e66cd0145225573

Files

c30c5bfe4a47809955c6028e05831322.zip
.zip

Password: infected
f213930b2a1dc0818af0076fd7cb8f60178226c5d0aa14260e66cd0145225573
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ