Equipments Inquiry[.]exe | Triage

Sharing

General

Target

Equipments Inquiry.exe
Size

755KB
MD5

debad253d1100432e0332d33556fc789
SHA1

4137c486272f4ba84eec5e743ec75586edb2e685
SHA256

05369208d0c31e1f2b1cf7bfbeb95439f5b23a08d6ec859a2cf51530a0c74ac1
SHA512

fe37d62def5da6c77f5dc58ad77c081d352bacbfe060953172d05883beec5cc2dbf108fb99a7ade4f486a3b0c95da5feabeb886b5980757db40496cb8be9a62d
SSDEEP

12288:/UkgToPDD6GOqkKjQ4RxowBw29fChmELWgujzjH8ovIwgT+bLGu9g:/uTobBOqkKc4ROabC+9H8Kxgab/6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Equipments Inquiry.exe

Files

Equipments Inquiry.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 752KB - Virtual size: 752KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ