VergiOdemesi[.]exe | Triage

Sharing

General

Target

VergiOdemesi.exe
Size

580KB
MD5

d4cd3ee2d6aec6b356f2f8af2751833c
SHA1

981802321adf1dff2be98c70335237601508cf3e
SHA256

5fc74ee0611e268046704352c5e4e1562942d9c339adcbc2d71ef89948b7c804
SHA512

385f18f6ef7bd6049cb9fc5f0d4080d0a27c69aaa91ce909a22afb84429cc46fbad39e10833840ba7c8051505e801df61909305a085ffdb2a9ce76d5908dce6c
SSDEEP

12288:pNj5AyI78Z80VV1yOvVC32SEacJ7J1JgECB/:p3678Z8YfvVXtRPOE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VergiOdemesi.exe

Files

VergiOdemesi.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 578KB - Virtual size: 577KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ