Solara[.]zip | Triage

Sharing

General

Target

Solara.zip
Size

342KB
MD5

0f56b44439b1bac6543b4111de9731c5
SHA1

58925d10aec83d3fdcd255aa44154761358e0a2c
SHA256

18e0341b79a4b3c9293aace1928964da65957f651ce81c15c289e8b26208fae3
SHA512

b186a7b2840f992f156ba92899ea4288159d477a763efb8f0b1b168641504048a99954a7f8066c57156e701c71c1b531dda8a9ffe2177e95f75ff2b7fb61a4b4
SSDEEP

6144:8KIJcWYHZlHtdnixIgqvugbBvIr5PVi2q33A0QeDrnBp7iqzDt9d/oGkrB50YkG7:4JcW0lNdpg2ugbBvkU3AcDtpNzDYB50+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Solara/BootstrapperV1.19.exe

Files

Solara.zip
.zip
Solara/BootstrapperV1.19.exe
.exe windows:4 windows x64 arch:x64

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 970KB - Virtual size: 969KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Solara/DISCORD
Solara/workspace/IY_FE.iy
Solara/workspace/mspaint/doors/settings/DOORS.json
Solara/workspace/mspaint/doors/settings/DOORS2.json
Solara/workspace/mspaint/doors/settings/autoload.txt