PO-1607201158 --- NAXILAI[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO-1607201158 --- NAXILAI.zip
Size

853KB
MD5

a7d9cf2551bbc154f0d99b56f6469186
SHA1

82e1fc1d14d2036700c4db729d9fb5bfaae5fa1c
SHA256

ce8a1025b94de6c473202114c6bd5fd5bc2952121bf631c33090f184bf97ffe3
SHA512

b43e5be66633b9bec33ee858aa4d044ed7988855694343270d2a595a1f33902b66b69173aed4db37c79669a650d0d886b0ee0952a386a4735c305bb6897aeddc
SSDEEP

12288:jy4q5LBQoTMSP8E5bOMlfcG+SZqG7dqYZzu/LlQDwTMX97ri/BnzSM0Go:G4q5LBZTMSPxbSGJ5Rqwu/g8MX50Bz/o

Score

N/A

Malware Config

Signatures

Files

PO-1607201158 --- NAXILAI.zip
.zip
PO-1607201158 --- NAXILAI.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 991KB - Virtual size: 990KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ