Ürün Fiyat 10243975 forBicakcilaroto A[.]S scan%001% [.]doc[.]xz | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Ürün Fiyat 10243975 forBicakcilaroto A.S scan%001% .doc.xz
Size

22KB
MD5

0bfdb8efcdfccecf6109209114d41699
SHA1

8b9b916c36422059aa4122d682a9971e30b2a5b0
SHA256

ad182357d0814e92424ffee2a432fd8091c8916c7f0996d4c61041d1dab0fca5
SHA512

921ab5e9c872dcf2acabc3b106002d00e21371b51b80374eb1d4fecee3d1d71d586e624ef90f28f20d38b551bac655dbbb0b9b0a878176dae815ea190d10d083
SSDEEP

384:NqFbbwkCoQVMAlzTQM8hwevN+T8A82BE4zv6FjQ9I39RDVPBuVRbfEFrPwM7x+JB:NWCobsTQJhlvN+5dv6tCw9RDVPEPEhRw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Ürün_Fiyat 10243975_forBicakcilaroto A.S scan%001% .doc.exe

Files

Ürün Fiyat 10243975 forBicakcilaroto A.S scan%001% .doc.xz
.rar
Ürün_Fiyat 10243975_forBicakcilaroto A.S scan%001% .doc.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

6-TH>Q
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ