8d1aa2c3bc5d34a69b4fc7e19180da0f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d1aa2c3bc5d34a69b4fc7e19180da0f
Size

982KB
MD5

8d1aa2c3bc5d34a69b4fc7e19180da0f
SHA1

43d86711f880a6f1a43e4bd1bb9c8c27a9a731bc
SHA256

49879fff0ec8796142046d3fd28e53d4e7c006b9117409e3868afc3eac25abcb
SHA512

fbbf4e7a1cbc1c845e42833f5df21b0a692f47ec105893d9d263fd15dda06bc707633c5e50d34f7d5064bbf7bd16eaf51cc85df85e5b2f39bf0d487e87dc395f
SSDEEP

24576:w9HGAHGKBbFRXjJwCNDAOlvJVz7EsBcJw/oH:mdbbZXrVz7B4H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/GLC-2021-E025.exe

Files

8d1aa2c3bc5d34a69b4fc7e19180da0f
.eml
- http://ismships.com/
GLC-2021-E025.r09
.rar
GLC-2021-E025.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1014KB - Virtual size: 1014KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-2.txt
.html
email-plain-1.txt