19300972292[.]zip

General

Target

19300972292.zip
Size

27KB
MD5

f33b55ad40a622ba0a89d9b4464761b3
SHA1

816295dc6628cf40fb392b8127f187bd629c62bb
SHA256

03aa2cd0f23c5492ed8cda2c15bb681a07a72d3c4aa85201acf509c8ed128bfb
SHA512

2958566b4b2f864f8d3236d70a34d6fadc14a5c3b52054d98a9e63b801590588659ae0684387fbee565cc10743cf7d727ea374154d96320465ea02d9ac12a080
SSDEEP

384:9Z2WkacOI3Pr/buWW0tkSPpT/sb6QYoSUOEZqUkv5R+X7wwJcWlTP6KUN93Dmr:79+z/buWWmvRU/Y7UfEx5R4JLz6J9zmr

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/QUOTATION_OCTQTRA071244PDF.scr

19300972292.zip
.zip

Password: infected
8802dbecf53e4b4dac95ee713221dca9f2c78dfceaaa842ae915656857ff465b
.lzh

Password: infected
QUOTATION_OCTQTRA071244PDF.scr
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ