09102024_0120_08102024_N°2024P411[.]174[.]bz | Triage

Sharing

General

Target

09102024_0120_08102024_N°2024P411.174.bz
Size

573KB
MD5

07ab69a1d5369ef917a5996b120f834f
SHA1

56e351456222d688d7927c20cc1d5e5ee2307e6f
SHA256

6071cb295706839cd321006ce6112eb2a6a033edd63eb664dc82a3aa8cf80b8b
SHA512

b58640acfafa2fa7d9ff6d71826147ed789a358feea17625216ca5985aaf010939d44a4b756ad4943584b67327545f7df81ddaa2b2df850304d6e72b2eab73a3
SSDEEP

12288:i+RLQ+9QKVHFp3WDB8rLkWPZHkkfiukGfM+mWkxZeVo3Gx7KWKT3aC0ZruP:/l9QuzRrLkDukGEj/xZeVo32OWABir0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/N°2024P411.174.exe

Files

09102024_0120_08102024_N°2024P411.174.bz
.rar

Password: infected
N°2024P411.174.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

pDuQ.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 633KB - Virtual size: 633KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ