HYI-BOO2[.]pdf__________________[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HYI-BOO2.pdf__________________.rar
Size

571KB
MD5

d84333b34124f0462495c3d28b063af7
SHA1

b56c61e9c33acc9763ad8165fc330d56be846c2f
SHA256

b82c1159670defc81febee26f79728a45f93fe0d27697e987277ec567b2fd74c
SHA512

2a715c426115093564e5093167736ccbf2216e01c0643973c5a78dcf0482f5bfd2e3d4b83ee1a8941b2b75a4b2a2e9be64c024ff4ddb294601e2aa2ec686e501
SSDEEP

12288:FhhXXVfV29M+Q26ekMD3lwipR/vhFW6uHp72HDXUXlFl6HergkF6T+fti8E:7tl8xp6ekMDVDhZCoAS1ct1E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/HYI-2023.pdf__________________.exe

Files

HYI-BOO2.pdf__________________.rar
.rar
HYI-2023.pdf__________________.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 594KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ