b4ff2bacd85533dc9a4cb3b5a70b47d353dda7a00e8cbdfc50dcc22f2c06a573 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4ff2bacd85533dc9a4cb3b5a70b47d353dda7a00e8cbdfc50dcc22f2c06a573
Size

599KB
MD5

b882a96e8bb06a45b522205c88e55941
SHA1

b3f4455b04d5d670bb0c526c524e8ff91a7f1014
SHA256

b4ff2bacd85533dc9a4cb3b5a70b47d353dda7a00e8cbdfc50dcc22f2c06a573
SHA512

8e3b404934db917a3fb1cd435993aca5829930b69990eb39be29ae39fd3292d194137a0eee7c4b1ea6fcc25a18b0b2442d26636d68d9599f29aa68d81d9c624c
SSDEEP

12288:vTvKFzclxWoCBi8Zcp68XDFzz3B17w8UshOz+hPRJMFDpsXzL:bkoCBi8D8TF51cjsh54hpsXzL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QUOTATION03-11-2023.exe

Files

b4ff2bacd85533dc9a4cb3b5a70b47d353dda7a00e8cbdfc50dcc22f2c06a573
.zip
QUOTATION03-11-2023.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 605KB - Virtual size: 604KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ