005144512abb01d3ff5131aa42557ac4[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

005144512abb01d3ff5131aa42557ac4.zip
Size

79KB
MD5

5c0b416e3ec35d2d17a0f888b8a35a88
SHA1

6997cbc14eb9ed2651ccaea2fefa9f41782be659
SHA256

5cc7a56c849ec3996f61bb6c1027c1363a85b34099ffe9f0b6dfa9421de2e059
SHA512

35aa51a18d8a4e0eddb83ec5bf935e3b777c45a09b96623fc7cd6de1c268b1a11516d71242b84c2f4e1c53e3bca5c9e130e0a6c71f6f940ed95d28e5beafef50
SSDEEP

1536:0z65+Nuca8VMPydpxPnEEToEwUs+9e14hFfu1a6nMWUQXmgAJzIMQ0Eu/O:01NuuVSydDPnE9T31y4ae2VMOEu/O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/370e355c9f4e591331d5272d81120b9a919dbab99c7db624b706308b134c79aa

Files

005144512abb01d3ff5131aa42557ac4.zip
.zip

Password: infected
370e355c9f4e591331d5272d81120b9a919dbab99c7db624b706308b134c79aa
.exe windows:4 windows x86 arch:x86

Password: infected

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

MEW
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�uۊ��
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE