2ce42f801493b0e89fa180323ca9e1d675e7f239c4ca65ab274bded8b91993c4iso_JC[.]iso | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ce42f801493b0e89fa180323ca9e1d675e7f239c4ca65ab274bded8b91993c4iso_JC.iso
Size

254KB
MD5

b136c87b8a4c4659519c4e3ceae17133
SHA1

ee96860ed9c47362287a3c4423da0dd0032c28ac
SHA256

2ce42f801493b0e89fa180323ca9e1d675e7f239c4ca65ab274bded8b91993c4
SHA512

200dcec80057780bf5725baba265cd41dfc7a338cfa9815b8912f49a2dc628772574b1fcc692d3a5e56f2de961fd9f756157b2cdebfa38115085b2474a1d7ebb
SSDEEP

1536:h9LUexqAAY1c9wqvnAv77vvvvv7vvvvvvv7vvvvv64+mhhhm+DtqOgt:h9LUexq4+9wqY+mhhhmitqOG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RFQ# SHIPMENT ORDER- HK SHIPPING PDA PREFUNDING.exe

Files

2ce42f801493b0e89fa180323ca9e1d675e7f239c4ca65ab274bded8b91993c4iso_JC.iso
.iso
RFQ# SHIPMENT ORDER- HK SHIPPING PDA PREFUNDING.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

futQJM#
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ