457BD98AAE7E7103720EF403309B9862CA33F4295B788E1C8CE374D4921CF057 | Triage

Sharing

General

Target

457BD98AAE7E7103720EF403309B9862CA33F4295B788E1C8CE374D4921CF057
Size

1.4MB
MD5

aface11585c6bc9d6a5fa83caddebfb6
SHA1

f4c60f43b7ad54be28e06699a2ecdd6dfe6232d4
SHA256

457bd98aae7e7103720ef403309b9862ca33f4295b788e1c8ce374d4921cf057
SHA512

b7e0bb20b26a51d1a4e3e1acd93ff8692396333ab8d3bc1cfd602cde0540ad2dc915639a9cefb3799d35ef466b5840ef5b22ec822246b24b7ac04cb5a36f3967
SSDEEP

12288:s9l78EN4iZwP2XNFzW5b7gTyhRBSe7Y003MiNOx+0t+8U+n911oap:s9t8EN4EbXDzWtNnBLvONOk2391d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Promac S.A.220172615415415.DOC.exe

Files

457BD98AAE7E7103720EF403309B9862CA33F4295B788E1C8CE374D4921CF057
.iso
out.iso
.iso
Promac S.A.220172615415415.DOC.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

eXVeRji.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 750KB - Virtual size: 750KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ