27112023_2132_Acquisti_20231124_153314_pdf [.]img | Triage

Sharing

General

Target

27112023_2132_Acquisti_20231124_153314_pdf .img
Size

798KB
MD5

b94c3e561c050b1e29db48d3c2e09d06
SHA1

bd9a7874bd0c4aa896f15ce12503a9d90ba0650a
SHA256

75ed4a8ef168891ce5c041ab9a2e43d837a934b88dba67c6f74b91d7a2d5c318
SHA512

4b18727453cc9fab1a824fd0a477f05577075161449c6a226da3cb2306a67d30f7b5b1d832f25d45324ab8f3c26fb16e77737998a88b4fd803f8514dc1b0db16
SSDEEP

24576:ODK5U5bgHFrp3lrh3lbNJFHeeJeSIgRU:jU50HFrp3lrh3lbNJgmU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Acquisti_20231124_153314_pdf .exe

Files

27112023_2132_Acquisti_20231124_153314_pdf .img
.iso

Password: infected
Acquisti_20231124_153314_pdf .exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 693KB - Virtual size: 692KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ