a3ed81d6c114afc6db71524c6073bc624f5d8f273ecb833be1fbb377ba783598 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3ed81d6c114afc6db71524c6073bc624f5d8f273ecb833be1fbb377ba783598
Size

672KB
MD5

91c146efb60d99e65ca90e2247c4b64c
SHA1

6b5030c2a541b2f7e92b8e0b24f3eaf998deb5d3
SHA256

a3ed81d6c114afc6db71524c6073bc624f5d8f273ecb833be1fbb377ba783598
SHA512

58e2c8d0b7bda17111f57a3351d8330dbb1e232b725425c52c1148fdbb5cf20414264c54ec46adfeafd6a621711f99f3377c752ae75eb2c94ba557dfe43f4b61
SSDEEP

12288:0QPSbJk8vHFZ73ChjoaqZ6HpaqyX1nW3hUfoJRPhYI8qQKzU0PC9R:BqFLpSnDH4qqnWQ+58qDSR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Quote.exe

Files

a3ed81d6c114afc6db71524c6073bc624f5d8f273ecb833be1fbb377ba783598
.zip
Quote.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 685KB - Virtual size: 684KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ