c2437194432614eb7cb4fb0e3e28ecdaf7d77e6a5970d18f2cc09e47008e2e23 | Triage

Sharing

General

Target

c2437194432614eb7cb4fb0e3e28ecdaf7d77e6a5970d18f2cc09e47008e2e23
Size

612KB
MD5

830f07a346885828ddc32767289e80f0
SHA1

963f8e10fe5a9cbc5e6a59f3caf20367c1142e23
SHA256

c2437194432614eb7cb4fb0e3e28ecdaf7d77e6a5970d18f2cc09e47008e2e23
SHA512

a1917fd1760895fa245b937cfebf54aa08ba6877299f8de8cce1d7066c949482caf7a8daf15a7092de9dd1e2c65b21628de8b680a2697c5816f8287245eb407f
SSDEEP

12288:gerxV/KgUK/tWfmBywxyEn7AeJa0PMVeRSxc9ovdMlLT0ur:gerxtUgAeyw7d80UaS2CMlLT0y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Halkbank_Ekstre_20191102_073809_405251-PDF.exe

Files

c2437194432614eb7cb4fb0e3e28ecdaf7d77e6a5970d18f2cc09e47008e2e23
.zip
Halkbank_Ekstre_20191102_073809_405251-PDF.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 667KB - Virtual size: 666KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ