Nursultan Crack[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Nursultan Crack.rar
Size

18.0MB
MD5

77b72f837b35aeffa47fa4fd54139d29
SHA1

1e898c3ea56655f35568793b76ff37e82d18e692
SHA256

29bb5130e7aac16a674dc8820b0d0454bc349c058893ccfb2f040e5f2f3ce782
SHA512

16e33e7dd74ff4e5d778c6be4e21fc4a691df1865499b7f1d5a423a1108973f7dc147b0c026846a0ca63f81a31ac2b9079cb8c05b7a8d0ac4add0f121b290858
SSDEEP

393216:ng/5xaR7CHrlHmNct1zJsSIJqoy6gMT6jp69xQaa7VJ:gRimL3TzSHqoyTMTr9yfT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Nursultan Crack.exe

Files

Nursultan Crack.rar
.rar

Password: Crack
Nursultan Crack.exe
.exe windows:4 windows x86 arch:x86

Password: Crack

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 17.9MB - Virtual size: 17.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ