Static task
static1
Behavioral task
behavioral1
Sample
Hesap_Hareketleri_13112023.exe
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
Hesap_Hareketleri_13112023.exe
Resource
win10v2004-20231023-en
General
-
Target
14112023_2025_13112023_Hesap_Hareketleri_13112023.7z
-
Size
520KB
-
MD5
2df98e777673b669eb2f7da4522442e0
-
SHA1
5e252b8cb8fa0d759627ca139aff8509f054a176
-
SHA256
018a18c9bf06f85a05d2b55c89766a83e6da51ab3e653cd3e2a76e37d569d690
-
SHA512
4abf082824fc2ff0bc5db8ce35b28aadb0cf337b4d5b28c424b510a8b1b9b2d9ba32b62f5bfb4c81325a10c0a109eb08ec8be458a81d4a0fb9d32f2cf4689f0f
-
SSDEEP
12288:BR5Idmm2dP/E1yqnDQGBu1ean2LHXQMGuvFNtzLU22SHDd2czAJdNwDrWXz:MsPMoiw1ean2LSMZ2g2zADrWj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/Hesap_Hareketleri_13112023.exe
Files
-
14112023_2025_13112023_Hesap_Hareketleri_13112023.7z.7z
Password: infected
-
Hesap_Hareketleri_13112023.exe.exe windows:4 windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 618KB - Virtual size: 618KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ