GONDERI_RAPORU_GUNLUK[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

GONDERI_RAPORU_GUNLUK.exe
Size

575KB
MD5

5bb8a8ece2806e5f7e5f552a5013cb0b
SHA1

96d5578f919c22e5a70120860fccc19ada240cf4
SHA256

ccd43ffbd361052165d6573e81e3a68a4cd3debe840542d12d3564687a9e4494
SHA512

22412fdc5d13d0de91d3d06707f9be4ed48dfe5aa94d9207034ed8c5d65b1999ea55dd0a5b9a86531bd909a7a9da8e64d7ff49ac7cc5d9a462a4e3b8f3e3f23b
SSDEEP

12288:ng7JhdE0qkAdWMZahFwl72SysgDxko0HZy63aSNiRe1OA8:ng7Hd1qkfbhIWxv0VKSNI6e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
GONDERI_RAPORU_GUNLUK.exe

Files

GONDERI_RAPORU_GUNLUK.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 557KB - Virtual size: 556KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ