Dec SOA USD28405[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Dec SOA USD28405.zip
Size

1.3MB
MD5

ca99c0a681851b417161fd5ff55e4d9e
SHA1

145a3e122c2d474049490aa0b008aff64083eea5
SHA256

2461e8e8143473ad0677f108c80097423f2c651ce2a65702431e0897d3f964de
SHA512

5b51a2c807bef19e55a56fe133db059345fc95fd4693ad06de0cccee78eb590609d58954740c26c9e003baba06d6d09f461d4e7f474307bf7d54ec2d5a44df8b
SSDEEP

24576:96fRL5E12782j6sbdEcsyDKYmpmcFxW8KyYQ0oEaAsoNaKZQ+tH:QfRLhGsxPsyD2mcFw8VY/oHqfZJH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Dec SOA.exe

Files

Dec SOA USD28405.zip
.zip
Dec SOA.img
.iso
Dec SOA.exe
.exe windows:4 windows x64 arch:x64

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ