OC00011636[.]pdf_1[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

OC00011636.pdf_1.rar
Size

430KB
MD5

abdd0db9040ddc88787952a764937ed7
SHA1

bd62cda260c4cea7ff328b4ca0a8a96edca18b45
SHA256

a56b06d894dea9410c3a57f7287186671e8f9b5f5c18b2a511ff6d139c9c0527
SHA512

cf4b6a4b6894f8acdd0bbe42357a76e719a6d4738bc7d5528d39b8fc12faae6240f0581fd1b149f7fd0d605ac97fd41f3d427967e7e557ed2322962e65660099
SSDEEP

6144:nek8B3TDrmody6MYZKF7p1md5IZ5CMWOPUWhzqB/QN/Ay7O5/+NhRCw:ek8hDdLVZ6w5IBb8kzmQS2/Cw

Score

1^/10

Malware Config

Signatures

Files

OC00011636.pdf_1.rar
.rar
OC00011636.pdf.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 455KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ