8b06df93a86e76b277343fb0a3d9b7e4aea35b7a[.]iso[.]tar[.]gz

General

Target

8b06df93a86e76b277343fb0a3d9b7e4aea35b7a.iso.tar.gz
Size

114KB
MD5

8bc9257e8c87ed47b20b573ecf877644
SHA1

2aaa992e07650da31b8e9a2487365cc1eb3d97e8
SHA256

39c6916cb63ff319018839a9dc5ab984efe249578554442e47371e29223f667c
SHA512

8b0a97ad38e67d2a6dc07b882a011820442afdaae257f4e48f53dfdec06c61988ca75db80352434fce85e10e67ccce580faa874c4113ec06bf4eac41be06027f
SSDEEP

3072:/JE3Siv/NOhGr8sPmgHRarCSbn9EngiaNTvb64G+H3:fM0g4rF9w36TjtG+H3

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/235087609-050738-sanlccjavap0003-12400_pdf .exe

8b06df93a86e76b277343fb0a3d9b7e4aea35b7a.iso.tar.gz
.zip

Password: infected_te_report
8b06df93a86e76b277343fb0a3d9b7e4aea35b7a.iso
.iso

Password: infected_te_report
235087609-050738-sanlccjavap0003-12400_pdf .exe
.exe windows:4 windows x86 arch:x86

Password: infected_te_report

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 269KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ