RFQ #32002506 pdf[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RFQ #32002506 pdf.zip
Size

617KB
MD5

f11c04b810db16158ca9486819d46dd5
SHA1

4c30893ece873054c2e8bd5b6e842c111ccb8bae
SHA256

1e8dc29e003d7863b4d1b8b07641b731dafc24c925494441d9c7c573e00cd526
SHA512

4c7121eb0f9f790bcf1ca9ace72b2605ef6f646b69b399d1a26698c11ac2b2a90d5129037c969af2f1b1624de2ada6df2092c73327737fb3b24f29df135a30b9
SSDEEP

12288:mdwnGRBF6obXQli+H35zCgllTAxJYiAvu7l8j6Lquk4SDH9qfZaDhRFDmUFVk/:mdNFBXGPXRll+Su7kJ4SRIZyheWk/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RFQ #32002506 pdf.exe

Files

RFQ #32002506 pdf.zip
.zip
RFQ #32002506 pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 654KB - Virtual size: 653KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ