file_fdp[.][.]Scr | Triage

Sharing

General

Target

file_fdp..Scr
Size

4.4MB
MD5

4bc83684b8e2a9050d44374b2fc1e45d
SHA1

00d390f567516249c0487d2eabd826dafa7a7b50
SHA256

81603495e06315bfb9fc1b8dadbeccad47524ac15084a9a3f25274f76fff7adf
SHA512

d914ca67a6fa7ebf66bd64ad088b59a6299e19c38aa3560076b6b91aa481d644dee4b652c0d7580c0f3c8c698f41f28531a0d8d2d11552d3edb7b5a407ea3569
SSDEEP

98304:gDQ3MPvsFGblKNIknSb7tFTGN5nxPVRaxxVoPHj3cs593:wwMPvs4gNDnyyZxPFHwM3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
file_fdp..Scr

Files

file_fdp..Scr
.exe .pdf windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ