a36aef6ecc3d4e6e893478c6bdae8ff2494c18beb63f8afd779d88aa74b1de23 | Triage

Sharing

General

Target

a36aef6ecc3d4e6e893478c6bdae8ff2494c18beb63f8afd779d88aa74b1de23
Size

330KB
MD5

d4e3c6cf8ba5fe11168f4b89d47c3cd7
SHA1

1e8503070353b6b2d2e8c0dbcc1ae27ef667f9b7
SHA256

a36aef6ecc3d4e6e893478c6bdae8ff2494c18beb63f8afd779d88aa74b1de23
SHA512

7eda53ae9cfa2f7afcf32a29fdb6d51bc82fd6e9860e1493c6b9f98841123fb3f525c31139021c65be57d84d833db4a082bdc1bf3e4d9c6e8ce8868880d2598c
SSDEEP

6144:Di6dqh+67cv1XkEH7gKVFBtAlYK+aNt+W5BDWLN8o6TNQPoXA6:DXqw6gv10i7gwFUyK+aN75FWxn4X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Saipem Global Inquiry.exe

Files

a36aef6ecc3d4e6e893478c6bdae8ff2494c18beb63f8afd779d88aa74b1de23
.rar
Saipem Global Inquiry.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 367KB - Virtual size: 367KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ