QTN No[.] RB-UDC-0123-01-POC Repair work MV Ugo De Carlini[.]xlsx[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

QTN No. RB-UDC-0123-01-POC Repair work MV Ugo De Carlini.xlsx.exe
Size

928KB
MD5

9890be2cedf74bf8dc3a4858475f5f85
SHA1

466b03be31cc95ad12d356178f47cdab234520c9
SHA256

a0c02d4a28eab6ffa4df8216fbc99baf94b1d0f53cc53cc6ed84ed2ca70539e5
SHA512

b3b5c53e02fb1d4c3f7346add354cab0894e94a611c32962a3b376a6bcccaf1b6d8a25a5f8707f2c325b1e3cd5976e4b3b41c4ca4f327b0341a9e1b156d1ef81
SSDEEP

24576:QMgIX3ghbR33k6wk3HeiO4JrYTSKIKTn6ALrx:uAgZ3wZq

Score

N/A

Malware Config

Signatures

Files

QTN No. RB-UDC-0123-01-POC Repair work MV Ugo De Carlini.xlsx.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 902KB - Virtual size: 901KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ