a2f0719a2948b5931bc6eae794c258406b070a570efe91a54252d05d9019a9e5 | Triage

Sharing

General

Target

a2f0719a2948b5931bc6eae794c258406b070a570efe91a54252d05d9019a9e5
Size

1.4MB
MD5

3b1dd67a89adeedf9da82ac1f2004324
SHA1

eb725c52f999834d13ad2d25569c9754e697fd9e
SHA256

a2f0719a2948b5931bc6eae794c258406b070a570efe91a54252d05d9019a9e5
SHA512

c520ee0a998b28652dda304a645abfee0940bd02ec3ee31e19be08b420fec28c30925c35d2f73126d3c9bf79dd3a3c6a8d97d2ae91b72d5101fdea55c5750147
SSDEEP

24576:2gPFAjnjX5BzRpufacXl/WxIaTj7x6eVAGHqIDyWsHUk9+eURYg:2gNMVBnufacV+6aTj7ZVxKIElURYg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Zxooek.exe

Files

a2f0719a2948b5931bc6eae794c258406b070a570efe91a54252d05d9019a9e5
.zip
Swift_92be67ab-e027-4955-b6fc-64bd720b2ba09.img
.iso
Zxooek.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ