docrw20230914[.]exe | Triage

Sharing

General

Target

docrw20230914.exe
Size

699KB
MD5

e6f17e5433dcdd4ca662c8dbf32639db
SHA1

0ce524d7110e18fba4d45623813bc85bc52c3b67
SHA256

0c45c035d97ecfff230ad1e43e48fede7dfa12de465bedb69b75884e16bf2113
SHA512

6ac3b42fac3733ea486354baaf47294eef45021835c7c42a4a5ca95f0ccbdd71cddeccfdee2c1b6d4d9e8ea021f8660ca116f7fed3f58dc7fadcc5205be35aed
SSDEEP

12288:xP1loubhci5aaVy8vgwxMKhNxnZb7zmgMIQSGTFe8DKrUO:V1losyGaen9MkHZb7vQJTFen

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
docrw20230914.exe

Files

docrw20230914.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 429KB - Virtual size: 428KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 269KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ