854F1E97-5DBB-4A87-A566-33D9012B05E2[.]pdf_1[.]lzh[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

854F1E97-5DBB-4A87-A566-33D9012B05E2.pdf_1.lzh.rar
Size

584KB
MD5

78d04abf940272c6e87c34c900334593
SHA1

bb8c371456c1bb5f935c0851c1c711da0899f543
SHA256

8f20bdb154e0b846f6bce5668f2aaa941dc8705a0d689e5d08a9aca7875129ed
SHA512

51a6706993c4726edf89cb296f2fa8d579cd40c83056242e6c034ff50ce612e12e1ff040a6ce7e968d9a28b55317d46ef83521a019cc71ff1e399ac46ce7f046
SSDEEP

12288:dkgg/s7ALoA6+VHyRMpP5L7FI8dwuoz4Nmga/4ugUKL5XgjTy:acyiMpVqbuokNhQ4ugU0ZCTy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/854F1E97-5DBB-4A87-A566-33D9012B05E2.pdf.exe

Files

854F1E97-5DBB-4A87-A566-33D9012B05E2.pdf_1.lzh.rar
.rar
854F1E97-5DBB-4A87-A566-33D9012B05E2.pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 637KB - Virtual size: 636KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ