M[.]V ELITE DIVA SHIP's PARTICULARS[.]pdf[.]scr[.]exe | Triage

Sharing

General

Target

M.V ELITE DIVA SHIP's PARTICULARS.pdf.scr.exe
Size

738KB
MD5

6cca484df391ecb807f2059ae3faff4f
SHA1

0a44afff854e0bf52383f57993fd4868b285547d
SHA256

8e3db35284b6e1ea560c14a69ea4dfd6ef8e27fe9974a609116d00f2d764bfeb
SHA512

7dd9ac73c7c663325124a7d7d4800efbd5f555df9f1d07a2c10a9aa9af6e8e740e5a9eb596e4b2259d5182d1634de01689f9c68c3e6906bf08427631dc152edf
SSDEEP

12288:RYOFCwgqaVouO3u8/67RGXEUPr1wzGSrM40Wxt0TAK7LSCQNRXU2P4G4ij/rZ8JB:RNC/qaSuO3j/yMXEUT1or4WxtVKaxf/+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
M.V ELITE DIVA SHIP's PARTICULARS.pdf.scr.exe

Files

M.V ELITE DIVA SHIP's PARTICULARS.pdf.scr.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 732KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ