987654345789098765[.]PDF[.][.]0987PDF[.][.]exe | Triage

Sharing

General

Target

987654345789098765.PDF..0987PDF..exe
Size

556KB
MD5

e1fb2289b6f908395174f732fc2adca8
SHA1

fde24804f26d70c28219c12615be96d544beda1c
SHA256

00308ca925c73beec6b8c62befd7da021f911f3ad7edc64bd90d9f3a85c766bd
SHA512

0fe82e407738e7742b4162984bf3ebde351a08dea8d607c356247ee27dfbbba3432bc390eb96a4ff7331f935f28701923744779db31edbf8e3e2b62a3631943f
SSDEEP

12288:OXPZ4X2yOhtAH+4KL9EqmD3iD0/yAcGlG3z4O7Wm75:Jom+4K5EHiA/y//zHS65

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
987654345789098765.PDF..0987PDF..exe

Files

987654345789098765.PDF..0987PDF..exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 522KB - Virtual size: 521KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ