REF zT2W4566 Doc[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

REF zT2W4566 Doc.rar
Size

539KB
MD5

cceedd84ccea569db933abbcda66cc3c
SHA1

d0a61369e68d3c528f8e38ddbf97ac73fb0f9681
SHA256

830a883c69b6dc716d813eebd0243440c80e939998bf05d22b05d16d0e97c831
SHA512

dc7f053b7842cb733d11cc96d453e5b2b63f431b4cacf42b9febcd0f489d3d9774f79edffaefed5b85da87113daa1cdedfa422a701fe67796536c93ceeee760c
SSDEEP

12288:iF+egAEm1majh628HcqCsTxQa22XkeYQh+wow3Gjs3U5a:IzTELeh6gp+bkyhl3v1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/REF zT2W4566 Doc.exe

Files

REF zT2W4566 Doc.rar
.rar
REF zT2W4566 Doc.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 827KB - Virtual size: 827KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ