ödenmiş fatura[.]tgz | Triage

Sharing

General

Target

ödenmiş fatura.tgz
Size

1.2MB
MD5

25071b2c43643b1f7d118c66896343a0
SHA1

a5bfe474f11c091f380be90e2fc97716b0929ca3
SHA256

b0476a5dc2e0d5972cf1dc23276427900cdbe24d97e5004d7418b16bcc248004
SHA512

711cc85c529c95dc73b10362be15c37bf458fe533b6c8a72954dc2de2889b12cac6cdc74445ead2c540e429f13fa00802be85aeb0a279b213dd5bb920c042467
SSDEEP

12288:G+qeqblr7Jo7vKwDiG0c4ETZkJ91yH+lc85eRVhtM1:Gvb9tuvb94skMH+e6eRV01

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/ödenmiş fatura.exe

Files

ödenmiş fatura.tgz
.gz
sample
.tar
ödenmiş fatura.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 602KB - Virtual size: 602KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ