16112023_0925_15112023_20231114_113104[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16112023_0925_15112023_20231114_113104.7z
Size

620KB
MD5

5ea25a072e27caaed1d95ed85e99d403
SHA1

4adb7406fc3997e2b0798fcae64579697a2ac2b3
SHA256

b8cc1fceb6375de2e4d43247e2d67a5e497bc523aa565b2cfe97f645684dd063
SHA512

4dc3b1af3916916d91db74a3b88ee785fcfe55a3fd23353fc771b8cf76ac97fbe19cf680f98b1ef2a76844e365d897bf29f5cd3a141834593204e5afc646dff6
SSDEEP

12288:KxP1+Es2PFyxmJoukkLUC6LRJOcbeiVqWVTz0bliaWem:egekoaPCK7veiVqW5siMm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/20231114_113104.exe

Files

16112023_0925_15112023_20231114_113104.7z
.7z

Password: infected
20231114_113104.exe
.exe windows:4 windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 740KB - Virtual size: 739KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ