fd587cf3f06742803e917b6700101c05 | Triage

Sharing

General

Target

fd587cf3f06742803e917b6700101c05
Size

577KB
MD5

fd587cf3f06742803e917b6700101c05
SHA1

0365fc79aa64949ee81bf893b8e1df76b44ff7ff
SHA256

52214d5f8629d60b5c9c51af77930eab8353970315a7e686a8dc3adb86b38b91
SHA512

abe5dde0db93767441ee7aa9a171073521cca73d78929691224f501f9fe8bfa9a84a8bd8ae42959167fc8ea7091ff73fea0ac241aee92f29afc14ee83f9918be
SSDEEP

12288:0r+ZUAKLHHrV7DoSnCtL4aCCgut9dX8fk6VvGzAcwO+tv+a6uo7gqc+B9uJ+B:0rig7LV/ti45C7dsfk6kzwO+tv6uo7g2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/STSGN5512604-pdf.exe

Files

fd587cf3f06742803e917b6700101c05
.rar
STSGN5512604-pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

mLX?9X
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 577KB - Virtual size: 577KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ