302f204625f23d0a90c5be737eadca3de17f9ba65720ddd2dbfdd23109abe0e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

302f204625f23d0a90c5be737eadca3de17f9ba65720ddd2dbfdd23109abe0e1
Size

636KB
MD5

f4eef2120ad7c60a98532496bc1ece99
SHA1

2d3e70f5c8eae33ae35f3ed8adb8d1d63bb30852
SHA256

302f204625f23d0a90c5be737eadca3de17f9ba65720ddd2dbfdd23109abe0e1
SHA512

63ac2cdd49577f54b01e17a9be9e961d8b79eccf848f7d759630c965783326461529d87ec7b31ae7277bf17d18f5bf7a5d77e302c121a4075d1f97af7bab98d1
SSDEEP

12288:pOYqjUPTe/eMtdAhSdvnSO7kohwbNytsO1X8b/Au22qgu9GiX9:pyc8dAhCvSOwb3Ohu/ABGPiX9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ENQUIRY.exe

Files

302f204625f23d0a90c5be737eadca3de17f9ba65720ddd2dbfdd23109abe0e1
.zip
ENQUIRY.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 666KB - Virtual size: 666KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ