Download -Tracking -Reference[.]doc[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Download -Tracking -Reference.doc.exe
Size

649KB
MD5

eec0330e463bb7948a8c16cf4d4e56da
SHA1

c87bbc379fd0c725f37dbb9f94f99163f3714191
SHA256

c7949fbd2d28d9b022aae880c6770de7ae3380d46401b5eb79f7ea38716ce516
SHA512

ae72de4f12bd50bfb631a0df6c43aae0aea4f21e49a0a3933864d92a81a0da5a33337797c1f629e4c892b0a7394c814ce31325c0f880d461970edd040b8137d5
SSDEEP

12288:DYGv5iKS1YGyBd6I2YUEGHOcxz3CjmVXKrt2HCGOZz9fACT:toB1YGyBdCYU+j92Jk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Download -Tracking -Reference.doc.exe

Files

Download -Tracking -Reference.doc.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 646KB - Virtual size: 646KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ