069b72f63213700ec54cced47b46ae6db1634f807ef2caeb1b2d7b2932708857

General

Target

069b72f63213700ec54cced47b46ae6db1634f807ef2caeb1b2d7b2932708857
Size

172KB
MD5

097915463dcf192fdbca34df7a5441d5
SHA1

9222ed80cc82240b45616f259408e671d7fd9398
SHA256

069b72f63213700ec54cced47b46ae6db1634f807ef2caeb1b2d7b2932708857
SHA512

f4e8f5ad108018aca6cdeed729e87de742e8acc9d681be1821b46781eef7a429c85829ceff09786493cd5611ca4b9cd52caa7cc2b76f63ca5f520e79aa384db3
SSDEEP

3072:mFtz+L7WbyNQhYq6MONgXbGk8YI0HBhxJF4XL+D2iPtIN+n35wl08vUpC:YcnpuhYqdOCrGklI0fPF4Xw2iP/npc0Q

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/idjvgwd.bin

069b72f63213700ec54cced47b46ae6db1634f807ef2caeb1b2d7b2932708857
.zip

Password: infected
idjvgwd.bin
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 226KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 66.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 939KB - Virtual size: 938KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ