40f54d0f9c369e1b4643f1d0c5fd1ffb420c73881e492087e6e23ba7834da854 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40f54d0f9c369e1b4643f1d0c5fd1ffb420c73881e492087e6e23ba7834da854
Size

1.2MB
MD5

e5adc7bff8ff71441a8c4dcd802a0576
SHA1

9ccda943d2697b90f80ca1beba0481249d53d85e
SHA256

40f54d0f9c369e1b4643f1d0c5fd1ffb420c73881e492087e6e23ba7834da854
SHA512

ee23a630f88d20a324bc0f4ea2ca7301cc602b4524c9c2a296515b71c5db4a212f5c0383a7983d3bb2020ceb5d685bef6ab35b302f2107c22f5aaeb8642a2785
SSDEEP

3072:OHUBNnCDDRvLGbrOAOkGt6+duWA/t/SHUebbxCbGgKk12qk/oPYm21KLbDoU1sNY:2KstvLGyELbMUTKZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/MACHINE QUOTATION.exe

Files

40f54d0f9c369e1b4643f1d0c5fd1ffb420c73881e492087e6e23ba7834da854
.iso
out.iso
.iso
MACHINE QUOTATION.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ