04092024_1612_04092024_Documente de expediere[.]gz | Triage

Sharing

General

Target

04092024_1612_04092024_Documente de expediere.gz
Size

452KB
MD5

1bb747306bc68c816e2761d8d36ef8dd
SHA1

ec3c1823f6ebb7e3e119b5de53c5acc1a900edfa
SHA256

66715cedf276617dd8b17dca2518ec7bdeb03257a7860373a360a7f95d099586
SHA512

874671afbed8bd57fe79257ca4de076dffb1102449f1fbadbf5a1948c4368d7287fe3923d8bdb8dd5f16ed02ec2b866dd5c4f4a2da04ffb2410c23af67e6bac0
SSDEEP

12288:rkhVFF9gurvdnMKgWQWQGp9u/45u0c5vA5J+wej5jFNyIP0kIm:rkjFFWIvdnELyp9Z5uQ5MD5jm80kv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Documente de expediere.exe

Files

04092024_1612_04092024_Documente de expediere.gz
.gz

Password: infected
Documente de expediere.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 719KB - Virtual size: 719KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ