MV XINHONG PARTICULARS[.]pdf[.]scr[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MV XINHONG PARTICULARS.pdf.scr.exe
Size

659KB
MD5

361bd7b1e6ed23fe0492728bb61f2753
SHA1

6ef3f199b04c595ced0884b278eac1dc4beb60db
SHA256

cf5c60d3b7cbaf0ba4c33ca0d2a6710a00aec5671e2b494ade862dfde20ba011
SHA512

c342edbc0608e751029b3c67a11640e638383aa020e43027ff4d94b49d7cf23743e7fa54a675c92edb7e7d25928f2ae532eb2f31f275740aa2ecca3bbfbc6c29
SSDEEP

12288:3N22VDIIoC+bth+tE+zZ7g/GaZ9ExkNQ/qBgglSY459i72l:4wzpEg6WZ7g/GaZxcPkE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MV XINHONG PARTICULARS.pdf.scr.exe

Files

MV XINHONG PARTICULARS.pdf.scr.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 653KB - Virtual size: 653KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ