Inquire Equipment[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Inquire Equipment.exe
Size

724KB
MD5

13198ffdf0b0817ba5642ba3b19ffbb7
SHA1

7dae4ace22e63c96645502a3aba3b709f7211a03
SHA256

137e86854872b9e443640a442a445ce23b82b527a1fcfa7a8c3ee135ac0e1fb0
SHA512

2a7e08338c7d9b1f908a7cc733131c07321e9aa74f0e334471211561bd594a688042b54971db5727e1fac72dbd5647ec9b4c31c7956e6d10690e74f03acfa1ea
SSDEEP

12288:MrRP2B0xTGlxNqvNu2hZ+nUEsn99SExb+Ux4Owram+/8bIt4QNNoXo4kr+J0Pjhx:M9PLaVUH9999SGKUxKW8BFY3Ww9x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Inquire Equipment.exe

Files

Inquire Equipment.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 700KB - Virtual size: 697KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ