TÜM BELGELER[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TÜM BELGELER.exe
Size

814KB
MD5

065e91a89bedc9479f55254458440633
SHA1

2032dd29dd773899b804273d9cc156bbb380f5bd
SHA256

8fb29a999e6c92b4511cff2615d6e518ebb42028ec49652ea76e1d8322166b17
SHA512

8bdb66ab2c792dbf973825770f2a8301839048aa1bedc6fc50c4671b6dc8ab35132cca96b2d22037173887e97b6c2810de7ee6f87593e35011f944f8ba23c497
SSDEEP

12288:+0KBDpiFJ+c6kaov+KpCoQZyH5ibzNu5Cr:rWpqJ9BTSyAXmCr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TÜM BELGELER.exe

Files

TÜM BELGELER.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 522KB - Virtual size: 521KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ