c39b64009253975285491d48c1a3b96c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c39b64009253975285491d48c1a3b96c
Size

669KB
MD5

c39b64009253975285491d48c1a3b96c
SHA1

897647266fd0ab3b54fbe0f477b1999e0301bf28
SHA256

317e9aae555318865c3c28e2e72d66c09f18246ed58a8b616ad502eb3847b38a
SHA512

e8f8c4cf800b1a50f89e4f5ba6441601b4b498f8de96a4e2fb4ff216ba28028fcacb91becaeb5cd942d98c77ad38e60a1ae61e3c25795f10be385480f145659c
SSDEEP

12288:1pz9k6A0XRAMFg8vQP9bXi0tI495/+9k0Afj92d8/tMTJjocSVs7D:1vy0Xec02495m9o5HWTOcx7D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/SCAN000544543012204.050921.exe

Files

c39b64009253975285491d48c1a3b96c
.eml
SCAN000544543012204.050921.7z
.rar
SCAN000544543012204.050921.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 940KB - Virtual size: 939KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-2.txt
.html
email-plain-1.txt