19201467351[.]zip | Triage

Resubmissions

30/09/2024, 08:37

240930-kjcf4szerf 6

30/09/2024, 08:36

240930-khm68avhjj 3

Sharing

Copy URL Twitter E-mail

General

Target

19201467351.zip
Size

648KB
MD5

a694188164c96165db24ea3ff97fa994
SHA1

0c6989c51d05b38a5065feffb2431d498010929f
SHA256

d562eb4504ddf4c398834b3d1961277850f5433f20fb50c3ad8a05b8414c12fe
SHA512

796a92814974c55974a7716555f92b70d95d7efd7c66018eea127cffe66edd3dd3fbcb472f95073048eb68efc940e2b3e4d703a335cac7b4a1ea1a3c227eb88a
SSDEEP

12288:dovvtvrrL9VEhkGuH/XdI6TH/NCoEsz8aEE91Z+ESN93nOpDfhw:6vvtzrh5XdI67NJEsRzcN9eLw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/3278c06b5510edabb3318aa1892eb7e426e97946b86eea925965a46ba1725ebd

Files

19201467351.zip
.zip

Password: infected
3278c06b5510edabb3318aa1892eb7e426e97946b86eea925965a46ba1725ebd
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 657KB - Virtual size: 657KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ