mswlogo-6[.]5b[.]exe (1)[.]7z | Triage

Sharing

General

Target

mswlogo-6.5b.exe (1).7z
Size

1.2MB
MD5

6f4742f82f425259e1186a8c2a7074c9
SHA1

af348f7499be07e86adbafab361bf3f7e0579bac
SHA256

a138c757019a1d3b2e47a9d15cbaa254e6425ef7c74ac459493044e14df347f1
SHA512

0331419be95f73589dabe9191ddb599d946381bf0b30a62db3b58fd07c5ecf5483a1a642c4e9bc7fe30ad10fb1dd147a38ebd4fb3e187797f73ef68054834acf
SSDEEP

24576:RA7+OEsNCwmawibZDYaMqliYh25iZWj5jrfUAcMpdkSblnD/Lrsc2:Rdp2V7ZEaXli+1GjjvBDB2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/mswlogo-6.5b.exe

Files

mswlogo-6.5b.exe (1).7z
.7z

Password: infected
mswlogo-6.5b.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ