____861754[.]exe | Triage

Sharing

General

Target

____861754.exe
Size

592KB
MD5

7d88ef0cbdc1ea33138d9acf333ac876
SHA1

a5554bc3bd0f6d5d2f47e4d84d9ac3bdec08aa7d
SHA256

125658d2a15c25d986039b7fd0ac63b8f83b6c7a312b9d1945f251c4a00d1edb
SHA512

74db3478e5cc54a7b4de9c897896266e45ce82229bb1eec7a25dd8b17a7084537290def650e8f358dbf90619e6b613726a07bd37c631868795750b2b260dbb26
SSDEEP

12288:kCxDHXQiGBHw0OB6SDu3KxsNZyVvwWTSrWYXD7k807vDKR4q:5dA7BQ0INIKWqNTkXk80/Kj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/DBG1435766.pdf.exe

Files

____861754.exe
.rar
DBG1435766.pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 625KB - Virtual size: 624KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ