f565522cc80508e5b6ed3cdbc6dad2a6d5c1bb58[.]gz[.]tar[.]gz

General

Target

f565522cc80508e5b6ed3cdbc6dad2a6d5c1bb58.gz.tar.gz
Size

954KB
MD5

3c640de5b4729c65d4bd29102479b89b
SHA1

dbe43ac9c05949eda054f8368e493a39a0fc5ed5
SHA256

bc4f6b2ce8accd55e1e91bf81c428200ad6b8c1ab7f386fea4086c9549aa7bc8
SHA512

585f13cfe34f7104a20383291720c6fa9c89c89e228d2bfda59d8a808955dea009536f4351d74555feae88fb586ee6f60ec0f7ad73c384b595e84d996f1221e4
SSDEEP

24576:tvHIp3CUEyKejXLFPxcTiKSrkGPK3KjQ3F/Yb2:dg3hV71xsiKSrm2m+b2

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/YPODEIGMA_BEBAIOSIS_SYGKENTROTIKI_2023.PDF.exe

f565522cc80508e5b6ed3cdbc6dad2a6d5c1bb58.gz.tar.gz
.zip

Password: infected_te_report
f565522cc80508e5b6ed3cdbc6dad2a6d5c1bb58.gz
.gz

Password: infected_te_report
YPODEIGMA_BEBAIOSIS_SYGKENTROTIKI_2023.PDF.exe
.exe windows:4 windows x86 arch:x86

Password: infected_te_report

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ