756b1b5f0510df7433c5560022edd477 | Triage

Sharing

General

Target

756b1b5f0510df7433c5560022edd477
Size

19.0MB
MD5

756b1b5f0510df7433c5560022edd477
SHA1

f1ca301a3a5ab34f1cbcecc221b11a8ae96b3bbf
SHA256

50c3216639e0a630f208412813414772b9e46bb23374cf0a99384eeff50bb3e0
SHA512

6305234fddaa8d4c041b1813b8e2cbfe44562cb70457ccd479fc416f939b2dde136130cfca7a88196ba60233a434635a891d0ede372eb0afb3712487b2b4dcbc
SSDEEP

393216:ReZsKanEh3BmdoMNqEnhPaHCkdiDTDgIF8cg3GHQDJLnErt1dLoO10LTftQ:ReaKo83ncHPcUgIFViGHYnU5cZ6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Offline Explorer Enterprise 6.4.0.3860.exe

Files

756b1b5f0510df7433c5560022edd477
.rar
Offline Explorer Enterprise 6.4.0.3860.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 64KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
disklamer.txt
прочитать.txt