a7c5a35911e04479f2994f41306c46dcf4bedea5ef1024f16b66e248bdff587b[.]7z | Triage

Sharing

General

Target

a7c5a35911e04479f2994f41306c46dcf4bedea5ef1024f16b66e248bdff587b.7z
Size

658KB
MD5

3b11235914b3c280414c66a24161220d
SHA1

bf4fc20dcfaa037d58f750482f85d62fdf41f6fc
SHA256

a7c5a35911e04479f2994f41306c46dcf4bedea5ef1024f16b66e248bdff587b
SHA512

d1f7e042733f1bcd6abfb4d00307b11528e028d46678702fa5b6e2d0dec9cacfa4f25b02d24b2a13b0f068a8d78911c203b1b6794b839c3f514dee17762ded5c
SSDEEP

12288:xLUifxk4GSdpxh30gnAWoo8JgGcWKlm5AI6qcci8OgLBPQSfS/dCwcvS7P1fQsU:xLTfL1v30gfYZK2fnBxf6Cwca7e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/QUG24-2003700542XX.exe

Files

a7c5a35911e04479f2994f41306c46dcf4bedea5ef1024f16b66e248bdff587b.7z
.7z
QUG24-2003700542XX.exe
.exe windows:4 windows x64 arch:x64

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 682KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ