24112023_1912_23112023_(DSME)[.]gz | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24112023_1912_23112023_(DSME).gz
Size

733KB
MD5

40efb9058a878a79e26fdf6655f54bc2
SHA1

1be7ce3b3d5ef4fa02cab6e38b82b5569042719d
SHA256

1187a3b88aac2dd05bbaf5060ce1bc2ef3b6ffd3daa3ad37111aafcb6288d40c
SHA512

4baa56ae0c11b43affd64b60eb4750ffb1b534aa1d3f5602aeea2f2b0c3deec4c8d406cc19e7e52e0f09472dc68504bc3edf8e3fbf26df056f0ca256b19c6f05
SSDEEP

12288:9ORd1WYjbeqSDunrDTR0u4mZralwW+lzKBPjH/jTxcxrKHSUup9to19+tYWp9L0c:QLIY1DAmZ21+QBbfjTxcVUuNsCp9LX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/사양서.exe

Files

24112023_1912_23112023_(DSME).gz
.rar

Password: infected
사양서.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ