hesaphareketi-01[.]r00 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

hesaphareketi-01.r00
Size

510KB
MD5

a8135526f8b6acbc4fcbbef3d755ea34
SHA1

d5eba0a34cd8dc9dfab3f2898a233769a9ff1ef0
SHA256

b8b4f3b3b9ab3c8bc5b44d87aeb08c43f2648ae36e2a79fa9e2b9dc3bfd7bfa1
SHA512

13a0feaab9d2f47b3792e1c0d585fd8c4d7c9b8f9b7d97ee1ec887814767f6b536b04bf8e868f86c6f99ad873d5cc74b5e5268a73e07b111660d014f02e84535
SSDEEP

12288:tMT+ey7wdz6xXTgO2V7AGSRkNZwOSHzkMtSGuXLDKnlHb:to+eQ9EO2Z9SRkNNSTkhRbmlHb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/hesaphareketi-01.exe

Files

hesaphareketi-01.r00
.rar
hesaphareketi-01.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 567KB - Virtual size: 566KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ