Drawing-img-[.]r11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Drawing-img-.r11
Size

669KB
MD5

07c19931aaf717ed6bba3999910b38d2
SHA1

9dea7bb82c008078a517d83a35bbfff9d2a83511
SHA256

8f4bd6602e31f2e55123990b7b6e4e10340528812044dff4e90f16934f5878b9
SHA512

974af012a27ba6a6b617b9cb462874cd3e3d4ef4cb5a2457a9ea6958bfe8d818ec520011a7a42eaf6beefe190ce535b4d5dc55994c660188f44ef70e12f93d60
SSDEEP

12288:MjE8ZbYyraYqDKNwaHhqjUCh5/Bfnx5HyFX88UOpF2xvqUIXrCb8yY1Hbsu:MI6bYFjqgthtdnw5BpF2QXrCbdY2u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Drawing-img-.exe

Files

Drawing-img-.r11
.rar
Drawing-img-.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 774KB - Virtual size: 773KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ