Nicos Tomasos Particulars[.]pdf[.]lzh | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Nicos Tomasos Particulars.pdf.lzh
Size

773KB
MD5

3082d8a67e769dfd9d278092911819bd
SHA1

d29f8634e51815c364a3fa51a060c5af75e60738
SHA256

7fdd8a2026b392094c4e78f51cf7ca1e6d4c4f9927f7c1b00bdce96a233ab6a8
SHA512

2ca8ad33019d11cc9b2a17d8a7014e291751cb53ec63e0f80309a5bc9cbf17c81979056602efa774805d0ca0a8f701d99d61e5a56cec57c83969b7955f1d10bf
SSDEEP

24576:Rjy9mPVGIJssMcEVnqyCG0XhlnwvTuJNdEuiHQ:RumVgscEyCGQIul8Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Nicos Tomasos Particulars.pdf.scr

Files

Nicos Tomasos Particulars.pdf.lzh
.lzh
Nicos Tomasos Particulars.pdf.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 812KB - Virtual size: 810KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ