=XUTF-8XQXsipari=C5=9F=2Er00X= | Triage

Sharing

General

Target

=XUTF-8XQXsipari=C5=9F=2Er00X=
Size

518KB
MD5

f66f9aa6ebec2988050097b94352c64a
SHA1

d8c0ea130f28708ab1b43db718b029494b3c7921
SHA256

2cab02c0147b28c922fbec54c4bc897647822618ad37fea4ea9f15722c15397b
SHA512

c9352964e75abbc7db7c45d05d1016fffa4114b88158721481d0fb063b7cade46addfda6e9098a1326f1bb8bb9608bbbe39a8e69d7af44d2766d3671de1b33e9
SSDEEP

12288:lc/AC7cCIhVtLsDqOXGLHsoy3jFOThU3QPGYVNjGlD5ZfQRdf6Wm7xv7:u/ehVtoDqrbl+jFOTu0GSNqjZfQP6Hxj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/sipariş.pif

Files

=XUTF-8XQXsipari=C5=9F=2Er00X=
.rar
sipariş.pif
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

whie.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 706KB - Virtual size: 706KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ