pluto2[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

pluto2.rar
Size

644KB
MD5

45d88046360dd97bfd3bdf2561ca1088
SHA1

c465d68e1f1a91da45c5c707c4f27b9d639ff280
SHA256

0e54e419db8241ef31269f3a5ff183e02b00327ffe6cfb3bd7f4c9e0b98d9754
SHA512

5535b7389367afcb3339088a96e175c60b8ec91917f4f13df56246e909a4ded2545a36b5316c7c4440f37d9c48d7fe744c5c750ba0b153c3ea0347abb9da0d7a
SSDEEP

12288:m47la4QSrZztlnLVKfRkIXhYuxUVPp1B2i8NRAvZFbTGztcSoh9t:m47PQs5/n4f6GYuKVPp1BcmvZZFxXt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/pluto2.exe

Files

pluto2.rar
.rar
pluto2.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 840KB - Virtual size: 840KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ