23052024_1327_22052024_JUSTIFICANTE DE PAGO1104[.]rar | Triage

Sharing

General

Target

23052024_1327_22052024_JUSTIFICANTE DE PAGO1104.rar
Size

648KB
MD5

12c3a0dbd2479e16a92bd175486406f7
SHA1

055cf38bfe8def1a4ab714832630aa092f3877b0
SHA256

cbb5e3dc2fb444b8647e1f0312e00cd7ed8a041b0ed5389391507294ef025f16
SHA512

62b9af4141a3d7053c007bc0aa8845c57a819e0ea0dce3591c68bd9c3fcdba161750cf8f53b485df978ed12bbc3d948963099b4005a561699f12b6ce93fc5e9f
SSDEEP

12288:Zewn1k8pi/WWRvUwt4Ori4C/c1M1h1qZqtnXhTIyNDAQBq5vVrEu02EsDK:ZB1odfi4CwYwZuXfNmJ0qO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/JUSTIFICANTE DE PAGO1104.exe

Files

23052024_1327_22052024_JUSTIFICANTE DE PAGO1104.rar
.rar

Password: infected
JUSTIFICANTE DE PAGO1104.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 666KB - Virtual size: 665KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ