07082024_0905_07082024_Request for quotation for order № TGA-SF-2024-077011 vessel[.]pdf[.]rar

General

Target

07082024_0905_07082024_Request for quotation for order № TGA-SF-2024-077011 vessel.pdf.rar
Size

567KB
MD5

b7bb83d752127b504ce3343b9f6a6f28
SHA1

c6e0402700efcfc830f6adbf9ab9c0ae3af239dd
SHA256

5fa8bb3ae9c59a6d95f28d8cc66196e1add18c4d155d94190fe1b97c792102ab
SHA512

05d5c1dce4a77b686d4aa4ca51239343bec2b95b6ba010e026fdaf702a64b6b2abe2d46595b68f4fce9fabe8d11ac003defd6f10974b015661822cd297eac1fc
SSDEEP

12288:j0oShb6vNdHdXVl7+ia8JyVYRVjFrcFJOYzqf:jpUb6VdPl7ZVAVYP1cFJE

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Request for quotation for order № TGA-SF-2024-077011 vessel.pdf.exe

07082024_0905_07082024_Request for quotation for order № TGA-SF-2024-077011 vessel.pdf.rar
.rar

Password: infected
Request for quotation for order № TGA-SF-2024-077011 vessel.pdf.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\Client\Temp\LAHtcxcltZ\src\obj\Debug\lphe.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 618KB - Virtual size: 617KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ