TUTELA RAD 472884089001-2023–01717878 8541 2589_02[.]tar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TUTELA RAD 472884089001-2023–01717878 8541 2589_02.tar
Size

1.5MB
MD5

fc23d50b4b19c496dc163476c5b3402e
SHA1

10e1cc388ff714fe16d121e88f24c7c57616f44d
SHA256

605a1c035c5358b1cd675e0f83166b548d03f86bbacb1533a7d1cc0412a86dd5
SHA512

651b346f6aa99ff1f6efb38c22ccc08b9a09965d2bf86accf08133bcc4e922861a6f54771ea420dbef53d24092c97afcdc79462c43d37528f85a9edcd5512688
SSDEEP

49152:oGwooSoTMgcLlV5TBr1OoKRoKZeMFK2xc:soLoTz+lV5TBZOdLeMFKp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TUTELA RAD 472884089001-2023–01717878 8541 2589_02.exe

Files

TUTELA RAD 472884089001-2023–01717878 8541 2589_02.tar
.rar
TUTELA RAD 472884089001-2023–01717878 8541 2589_02.exe
.exe windows:4 windows x86 arch:x86

Password: 1220

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 509KB - Virtual size: 509KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ