New Inquiry-pls quote parts[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

New Inquiry-pls quote parts.exe
Size

968KB
MD5

48b0681c3711b12187b3c58695822480
SHA1

02caeabba7b149aabf17d633753958cdedd3d3c0
SHA256

78102b887c7ecb520ae761e502e0a2e20184d3b081f2d99e6ecdbc31d163322f
SHA512

e89f6defc07c9f8720a6f7020a97beb1043d58d772672677fc9bce17b7cd044e111bde815e2f534060ed895804d8e7ebb7d3ba92645051aaf60919f41fb8a16c
SSDEEP

24576:uwzBwClHv7V95DSro9vaaqbFq6ejZYLB:vwWDRCaEEjju9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
New Inquiry-pls quote parts.exe

Files

New Inquiry-pls quote parts.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 957KB - Virtual size: 956KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ