d034b10388904c23f1b7d0a6fad023a49b586ae15e03e925609f1ff6dc21fbf5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d034b10388904c23f1b7d0a6fad023a49b586ae15e03e925609f1ff6dc21fbf5
Size

656KB
MD5

e1896658b3da64d3e72f3692097fef7e
SHA1

3078f8a2121d184cce6f2caac08c1c2726da5c26
SHA256

d034b10388904c23f1b7d0a6fad023a49b586ae15e03e925609f1ff6dc21fbf5
SHA512

5216c7d38f9b2ef729274a349fcf32ae487f78270b706bd2fe804d38d1173ecd356781926879e6eeb521e9665e24482e34aec9803d867e7b591b4ecddff3ba32
SSDEEP

12288:y4sFnO3U1hpeytdrYgKySbAxNsoLS4uclurOWSdrDQpbOi8MQM9wHq:tCOCoyNsoLS+l2OWSdrwbPrQqwHq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Share Drawings.exe

Files

d034b10388904c23f1b7d0a6fad023a49b586ae15e03e925609f1ff6dc21fbf5
.zip
Share Drawings.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 741KB - Virtual size: 741KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ