SHANXI Outward Remittance[.]ARJ | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SHANXI Outward Remittance.ARJ
Size

598KB
MD5

602e70a0fee6d7aa070f61421e067456
SHA1

61a99561dd8e80906f331133ec91f7d0912dfb89
SHA256

8435ae340f35425534f37a0b34afd39ce2397132dd630ec0e03e3eb918768d58
SHA512

52fe0c95829f737c12efb8aa48891b4d6c1fcc26642929fff04d628b76065cb1005431ff39fe05d930b61b5e1e2e93efbc845191e6c647df0dfe516f72584188
SSDEEP

12288:U3B9J6mXWaUYXQwJ/hqdduYCcbN86Pl/8TEQc7fXVOtFJJ14TAehbOx71:UZ0hCQkhqdduYZN7UT5c7flOtFT1YAeK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SHANXI Outward Remittance.exe

Files

SHANXI Outward Remittance.ARJ
.rar
SHANXI Outward Remittance.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 614KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ