41add1b4862baac6f74c836d50e32735bb9fc34c02ecf0c4f97e702ea03ed7e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41add1b4862baac6f74c836d50e32735bb9fc34c02ecf0c4f97e702ea03ed7e4
Size

750KB
MD5

3eab037391c5cedc31ccb494a5f5f1d4
SHA1

3f4e2e0815bc3099e617625a29205c3eb8bc8616
SHA256

41add1b4862baac6f74c836d50e32735bb9fc34c02ecf0c4f97e702ea03ed7e4
SHA512

a8847d9065c6f62e79a506e71347d730565b1943d924f42098c4f2747e9c148730321e754f33d82a215e8572b131c6c750ea38cd4aa37a0f2455c7af4b354777
SSDEEP

12288:MtVbhplHVm1rC1X3heXm6FyPysEZbsx3Np1tSHPk6TEnYEiuiJ3HDGDSfDLEV+a5:MtfLUZSX3OyPysEZbsx3b1EsFnYTuiF4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/OTP Bank_ Fizetési tanácsadás_Pdf.bat

Files

41add1b4862baac6f74c836d50e32735bb9fc34c02ecf0c4f97e702ea03ed7e4
.7z
OTP Bank_ Fizetési tanácsadás_Pdf.bat
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 816KB - Virtual size: 815KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ