072b92084f2b1be33976bd6ab9d025c514510fbd8aaf64c2c5dae57a8c73223a | Triage

Sharing

General

Target

072b92084f2b1be33976bd6ab9d025c514510fbd8aaf64c2c5dae57a8c73223a
Size

535KB
MD5

9524d647f2a5d91cb0cbd8548e28b34d
SHA1

ab71bf1dcbcf27c0509575c1cca5f1474c3434c0
SHA256

072b92084f2b1be33976bd6ab9d025c514510fbd8aaf64c2c5dae57a8c73223a
SHA512

f8c4ac803293a178ce9798d8aa07f3beb61d1f3b64ced0d9326daf0257ca5cf1b4dfa9dcf2e1f5f3f2c1cc0819233980edf13a5270223a642020ab7a5c312347
SSDEEP

12288:LpFF4vb4qRi6dVuW9LGCzu9CHZwGom+ZebKl2lgx5hvk+q:tFF96dBaCz/iGoFZebk5xkr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RQF.exe

Files

072b92084f2b1be33976bd6ab9d025c514510fbd8aaf64c2c5dae57a8c73223a
.zip
RQF.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 542KB - Virtual size: 542KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ