d79f1e81b70c2549a309d6a1d96485718e7435e07c4f7a761c0201410434d99e[.]7z | Triage

Sharing

General

Target

d79f1e81b70c2549a309d6a1d96485718e7435e07c4f7a761c0201410434d99e.7z
Size

674KB
MD5

20bb681cd474986e45435f55169aaba0
SHA1

e4956a87165af31f11eacef93562eb4724dc2225
SHA256

d79f1e81b70c2549a309d6a1d96485718e7435e07c4f7a761c0201410434d99e
SHA512

1a2d4f413cd387bc6589e00408ccc31d1f183e06b24c6f44c3fbb814d25f3e8007a89e6c85894c07eee601ed43db7b2d4468b100c1d83bf1757de51bab645bad
SSDEEP

12288:Y+njjwtAsfLK8uC2wAwIk80euvs6/I83ccMe9kL0RC4oTSxgLuCbtlwqGQUk:Y+vwygK8xmlu06/IiccTA0R7oMgLu25v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/NEW ORDER99716.exe

Files

d79f1e81b70c2549a309d6a1d96485718e7435e07c4f7a761c0201410434d99e.7z
.7z
NEW ORDER99716.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

fTtdJ.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 696KB - Virtual size: 695KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ