a15f3db6867c41a39bc84d07bcc70d88b73c02b79b4a7ceb53f4815ea37de546 | Triage

Sharing

General

Target

a15f3db6867c41a39bc84d07bcc70d88b73c02b79b4a7ceb53f4815ea37de546
Size

734KB
MD5

06094ade933d53c34455c40a5c2708b4
SHA1

350e4f42d8e4b6893c674a93139979a0a68976ce
SHA256

a15f3db6867c41a39bc84d07bcc70d88b73c02b79b4a7ceb53f4815ea37de546
SHA512

05aa98948600ccd93e7c0031cdd18e80bb70e25a8154b236d1560b5d58adfd1096e61ea325c78d16002d27fb09df7dcf3f7d7d83d93258f8989132d30a313c82
SSDEEP

12288:YJ6cQpSi+uIitTbJZK3DCG7cEhktuQi+zQwxdo2XlGfUY9ex6VEd24byvfBJ58:86z/IitT3EeH5umJQ21slVEdl2vX5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Fntzn.exe

Files

a15f3db6867c41a39bc84d07bcc70d88b73c02b79b4a7ceb53f4815ea37de546
.iso
out.iso
.iso
Fntzn.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ