CUMMINS INSITE 8[.]7 Pro[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CUMMINS INSITE 8.7 Pro.rar
Size

5.1MB
MD5

68b3de20095dda98167dc2cfe1368986
SHA1

8ec341145b3feafc6bdf42e33ad15729099d0e41
SHA256

c2b9998b798219e8966f25a04411b3910ca1b2901ac8e5e1fde29950264cc6e0
SHA512

49231e5138bb4a543956d33956294638f57f3be540516eff61640a3e0781f0673df14a32b779543fa971fddbc634027d9d861738f7631fd71d1c54c4de7f257d
SSDEEP

98304:++WUgrcH4z0nZPdCJRwmyx3xQ0S4V7T9c2RCQXfgIyF23xwpVF0/XbEEdgZDiPRa:++Gr+ZlC4mGvV7b5x3gg/bEKR+1Nelc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CUMMINS INSITE 8.7 Pro/INSITE 8.7 Pro.exe

Files

CUMMINS INSITE 8.7 Pro.rar
.rar
CUMMINS INSITE 8.7 Pro/INSITE 8.7 Pro.exe
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1.7MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��H
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE