3880_315066811c9056b9b8405b7422af8b74d6804f39045ab251f8d01c4e7bb3fa90[.]zip

General

Target

3880_315066811c9056b9b8405b7422af8b74d6804f39045ab251f8d01c4e7bb3fa90.zip
Size

60KB
MD5

cd941e880492899cbeb85a4a3811c0e4
SHA1

5920758815e2de57957234b54774e5eade8437a4
SHA256

0bde9a627fcf3cf089507cbf26b24268b067481c45b1df9443a7c660ef6e3906
SHA512

77b7ad805dff5ce721a24d227abc903095353a3ee9d424e6feef80018a1e3dbd0b3cda6f6be86784b847d814269f15a1deba57744549fa36eed2dc6dfa2f6c06
SSDEEP

1536:NfvaNN8kMyRf6GbzmheM69gbX17Hwvc9a+jNZFlruL5:NfvoN8kMkRHOYgbXBMMj+5

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/transferencias.exe

3880_315066811c9056b9b8405b7422af8b74d6804f39045ab251f8d01c4e7bb3fa90.zip
.zip

Password: infected
315066811c9056b9b8405b7422af8b74d6804f39045ab251f8d01c4e7bb3fa90
.rar

Password: infected
transferencias.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ