hesaphareketi-01[.]pdf[.]SCR[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

hesaphareketi-01.pdf.SCR.exe
Size

343KB
MD5

d4e8894fb5ed5f45972882fbc6ef04dc
SHA1

f5ac926e2501659cd3933afb72e1172b1147f95d
SHA256

4888ef9f557bfc04c0c7da3ff2dc1fc34767273d90053aa1e04c3892300afe12
SHA512

bd9b3644bfe90a3c435fcbf8895163963b4302dbe64db5652c5978cb6cfcf19b6f84249909c597e00425c375456bcda0eb1aad31b2825c6d60d1bc0983f3d389
SSDEEP

6144:MvkECw92bslgwmEuLCP50vDht1LIUcz7zyr+RCniN/F59ZrE:MvKC2bwmEbIht15c/qip

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
hesaphareketi-01.pdf.SCR.exe

Files

hesaphareketi-01.pdf.SCR.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 341KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ