AKI0509459 darft Ain sokhna[.]zip | Triage

Sharing

General

Target

AKI0509459 darft Ain sokhna.zip
Size

708KB
MD5

fa63ea6da378b62beb231f6be6c4f1fc
SHA1

923fa7319d922679411d4f638eb88ef115107bff
SHA256

557b570906a2ed65fa9361247549cb9309d3e956005270af22f77d59efca6803
SHA512

e848d215963913b40c2a564274f6ac11e328c87deff4d1c47e95a51160ec20f6c56b78c3e9b6fddd531a35e1d1a7a3e54024389f07b22c67746eb12da7250eef
SSDEEP

12288:N81FZ0KGcIbP9frf9PeVqGXxnHwY1FwVVJGCe+uuggcz06makWGrxqiboe9J:NiFeHc2ZIQYfwVVJGBgm08kD9br

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AKI0509459 darft Ain sokhna.exe

Files

AKI0509459 darft Ain sokhna.zip
.zip
AKI0509459 darft Ain sokhna.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

hVJX.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 716KB - Virtual size: 713KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ