=XUTF-8XQXyeni_sipari=C5=9F=2Er00X= | Triage

Resubmissions

07-11-2024 12:50

241107-p3ah3ssfmk 10

07-11-2024 12:47

241107-p1fmbavmfj 8

Sharing

General

Target

=XUTF-8XQXyeni_sipari=C5=9F=2Er00X=
Size

558KB
MD5

027b03cee16500f3c919be5bdbbb23be
SHA1

3e463e6f6675bb13a231706136927ea861299205
SHA256

7e1381c64bd9b22722685486aede77240202f163ff0264196da0940d1554bc93
SHA512

a6e5ce4d677bd58c6d0adca3269077866388a216a5020c0371224af67153da0eff6b98ba4f0235d4f5d728c159332898cb2b49c656d333aa18b79b2e52042de9
SSDEEP

12288:itvk9x/nnGkcyk8RHPj+/CqqCoq1WWQBV5bK9GeiWT4/D6zENA:ykfGkvL+/CqqCoq1RQocPWTeD5NA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/yeni sipariş.pif

Files

=XUTF-8XQXyeni_sipari=C5=9F=2Er00X=
.rar
yeni sipariş.pif
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

AAjd.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 596KB - Virtual size: 595KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ