Scanned_by_Xerox B230_Printer[.]cab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Scanned_by_Xerox B230_Printer.cab
Size

913KB
MD5

ab8eadd09b870b16956aa3b791882f87
SHA1

54d3d706d65e3d529cf81eadacbbd5b8de4cb43a
SHA256

329a01e5fad3ead4bddd337d352d9d8cd971f96179e454223ff4e4c78838c59e
SHA512

b7478fbc2325c0f14ef61acdcfb3e64171718da30fff0d9cda12336c7a7bd5a52e36e5f08bd65d46da56dea2a83aa875ecc05f7dee0baf751669901fc11f38b5
SSDEEP

24576:VpxRDTeV7JYDZkFn5D8VynHC5GP9GUA8kim+:VpxRnq7JYDZk5h6ynHCgP8l4m+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Scanned_by_Xerox B230_Printer.exe

Files

Scanned_by_Xerox B230_Printer.cab
.cab
Scanned_by_Xerox B230_Printer.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 454KB - Virtual size: 453KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 847KB - Virtual size: 846KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ