DOCUMENT[.]exe | Triage

Sharing

General

Target

DOCUMENT.exe
Size

949KB
MD5

d17ceb11a280dd94490b1ea222e0ed61
SHA1

507500c9f7f1c288d50d19dd4ce551eadf2a52be
SHA256

53081b8516852eee078265c82b2f9b70367d3d2a50d8886e24f2704a3b683929
SHA512

dad7118718356c78407770996014af793d5d7f9f238f8df81319fb5f0c46ec2793f6f130630d39a5bab221afdadd9361be90c52ff138f703181e733fba705b4a
SSDEEP

24576:fHIQ/BL1+ckVowS88qvd5SLZQ37qqsCxcwnWe:px7rcFaQ3uRe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DOCUMENT.exe

Files

DOCUMENT.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 946KB - Virtual size: 946KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ