153c7db2d2e00f6ae72f21743836cefa3d48f230ffc28734b9d8c23fbe2d1198 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

153c7db2d2e00f6ae72f21743836cefa3d48f230ffc28734b9d8c23fbe2d1198
Size

509KB
MD5

42ba906dd9ab40fbb1d1234c1a4159d8
SHA1

138df1bacc800d4647ebb64da75de595eed8f046
SHA256

153c7db2d2e00f6ae72f21743836cefa3d48f230ffc28734b9d8c23fbe2d1198
SHA512

bf55a9eb050aada8e474a9ed3601faab6a1c36ea9bb84d51e1fef5994e3329cc539a5458ad503a701511f4539cc47df0f939e880c2ca765070d3dc01a9ed3e79
SSDEEP

12288:e16sp6acWVY907rc/SbuWUiI/m1XTLX3Cko5J8WKlrBq:iTVVYuPbyv/mNXSkI8WKFA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QUOTATION_SEPT9FIBA00541·PDF.scr

Files

153c7db2d2e00f6ae72f21743836cefa3d48f230ffc28734b9d8c23fbe2d1198
.rar
QUOTATION_SEPT9FIBA00541·PDF.scr
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 684KB - Virtual size: 683KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ