Demanda Civil-PDF_parsed[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Demanda Civil-PDF_parsed.exe
Size

677KB
MD5

15e9336f0d6fb2eb4e4ce45ca239d5d5
SHA1

69de675949b7e9aadcbfe858ef12e8deafe3a7d6
SHA256

8c298764818ca42411115429c1f819577f5ece4d0c3dad949ea46a9ec4b49634
SHA512

e472f3b9064269a6a21928a07e33ebd3bda690125108370075010a20fd1b594005cf3fb2d1742abef4318b79e534a147066b3e1370916f63efd32c9c92855c03
SSDEEP

12288:LEAu/TZGW5pED8DtZiHaMcw+ubaxn687h8fms:lSo2+D8Dosw+8RIh8f

Score

N/A

Malware Config

Signatures

Files

Demanda Civil-PDF_parsed.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 495KB - Virtual size: 494KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ