[Bethesda] Advertising contract[.]pdf[.]scr | Triage

Sharing

Copy URL Twitter E-mail

General

Target

[Bethesda] Advertising contract.pdf.scr
Size

2.5MB
MD5

f5eca2db35e5b50edd563b0111fd0e16
SHA1

cded88c3b2adf274ee3ddc6c82c7be362a35e664
SHA256

718a8fa9805aecc4b2d6e55a4ecc8e9596bb7d475b25c36a70cc2b515a27c154
SHA512

0206d675b24d927d3e8fd2ec2fd70e311a4277dd3a1d91dd1b1fc70737dcab54826804a649173315691d762d1517d6e077e42f7b36d54783fab81f7adc73835b
SSDEEP

49152:uIi7IcSI0iPTPzlHHz3AZ848qefnhHpWVxCx8:baIcS7iPTPhjOX8TZJWG

Score

1^/10

Malware Config

Signatures

Files

[Bethesda] Advertising contract.pdf.scr
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ