8940ee6fe6900beb6113cbd48e2f54f81e36b3806bbb6c73ae514982cc98a710[.]zip

General

Target

8940ee6fe6900beb6113cbd48e2f54f81e36b3806bbb6c73ae514982cc98a710.zip
Size

735KB
MD5

2881431ec401c97769deab2162ef3b7c
SHA1

529ae605e3bd81f373278ce6cd0853bb07450ac6
SHA256

790fe3f399f96a9588f57b1221259869bb506a009e79d947cb7ec633698d4243
SHA512

8e5ecbaaf968ab08f3002f22075a06d05eb5d458dad66cf4351e7aaa74b84b18e48f92557931e8ec2f961a68bc766e21cfb5ef452e8c7162ba76f39c8007fda5
SSDEEP

12288:vfYCjYoLEEjdYgkqjBh1zMV4JUwdgQu2g2R3Q/EX8UlfmNo+6H8iqmP9ybQssY:vfTLEEjDkaGC9dg8g2R3WEXFmCH/Zl/Y

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/8940ee6fe6900beb6113cbd48e2f54f81e36b3806bbb6c73ae514982cc98a710.exe

8940ee6fe6900beb6113cbd48e2f54f81e36b3806bbb6c73ae514982cc98a710.zip
.zip

Password: infected
8940ee6fe6900beb6113cbd48e2f54f81e36b3806bbb6c73ae514982cc98a710.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ