09072024_0941_08072024_IMG_0017924[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09072024_0941_08072024_IMG_0017924.rar
Size

704KB
MD5

008de9899e13d593ecdd459d1c2b79ce
SHA1

b7beb1f97a8ff9be8ecd71cd85a1e7ac94be9c27
SHA256

d8a0cff4edf67b75e6ab9973437d0548b17a73b8be78d317cbf808df0740f099
SHA512

1bd2186b120e5fa3f880acbd2e1021cc6d590918a823c79285ef128c3d52a2da0a585dfca1aa3c5d958649d808db71cf7e35856cb7092dae256f6987d2b34419
SSDEEP

12288:oF3cbiDMamOfh06+l9efC9ZKHttpSTz3AInLIjdryR063pfOlqt0kywX0s3Vm80o:olcbjd649efC9ZKHnUz3VLIZryR063pd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/IMG_0017924.exe

Files

09072024_0941_08072024_IMG_0017924.rar
.rar

Password: infected
IMG_0017924.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1012KB - Virtual size: 1012KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ