b324c73b07a153b83616ae5e4ff93ffc[.]zip | Triage

Sharing

General

Target

b324c73b07a153b83616ae5e4ff93ffc.zip
Size

14.6MB
MD5

f690989c64d2249c83d82361cbfecf0b
SHA1

fc396d139e915d033e805a70208cb16b06077d4d
SHA256

56bb2a7cfcd4227d2dd8ea7f3a55c5267dc0f434c54f917752a92157534e813b
SHA512

1a5ab718ca3f03710047f6086a310d00405a0b61cdfb5776ccd1d70d1b24cc4db511893f8bd500885a04c58def73961af2f093dfc0840949d2ce685f6e18b10b
SSDEEP

393216:Gd6JaU4HvEflKLdiiDlHGmrY8h2oxbhX5Nj6HhM:GdUaU4HvEflOfGCwCX5NjYhM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/e48d8268272ff27d2fbc626caa1812b9f1c0ead431a344810093dc5e1072d8da

Files

b324c73b07a153b83616ae5e4ff93ffc.zip
.zip

Password: infected
e48d8268272ff27d2fbc626caa1812b9f1c0ead431a344810093dc5e1072d8da
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ