091893f49db7ae37989133a0e748d234f307c3a3ab1b6a45fb9f31418280780d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

091893f49db7ae37989133a0e748d234f307c3a3ab1b6a45fb9f31418280780d
Size

342KB
MD5

22c2c8138d1bc9786dc749e53f96c808
SHA1

5bcd0d1106352f3e742ade1bd22f937d630bc4e9
SHA256

091893f49db7ae37989133a0e748d234f307c3a3ab1b6a45fb9f31418280780d
SHA512

a8d3103a6b36ea0ff00518750f69f43fae831e3693f6ff73ae4f3ec97dc37c090150bf34418abbf381446b9bda10e24100dcf75f9572fe89440c079df6e8a1c6
SSDEEP

6144:/Qul8wLVpR6QgYfQnfUH6UTZNNB67Ah9yzvLs0aGJxOeQ9i2Whw+xE8ojx9Eqb7/:/Qzo96QEfUHZH87Ah9sosJxOvI2WcQuL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QUOTATION_SEPT9FIBA00541·PDF.scr

Files

091893f49db7ae37989133a0e748d234f307c3a3ab1b6a45fb9f31418280780d
.rar
QUOTATION_SEPT9FIBA00541·PDF.scr
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 348KB - Virtual size: 347KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ