075a0e3ac5e88670bade4e5b3bdeff4610060dc0328ec689453ccc441288368a

General

Target

075a0e3ac5e88670bade4e5b3bdeff4610060dc0328ec689453ccc441288368a
Size

656KB
MD5

f7e17c0a13b79692624254c2b89620ff
SHA1

a30aad6d2e1585a92b6912fc1250b98d0c741a93
SHA256

075a0e3ac5e88670bade4e5b3bdeff4610060dc0328ec689453ccc441288368a
SHA512

4c38d1be603259638e99501a572ee68049afcb9b80d1762a95dea548a807d55b1cd3fb8883a25ee94aa9b4c9f971d5d1947b5eca4c97a33bf2759d08c44e54be
SSDEEP

12288:kKTXMEJBeHdzqUn3zyCHzOewGYy70aMG1G+ZeTJbOAa8MOltnR6G431G/:kKTXNeHduU3zyyNYq0iSJb9qOA1K

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Petrogulf 108-22.exe

075a0e3ac5e88670bade4e5b3bdeff4610060dc0328ec689453ccc441288368a
.zip

Password: infected
Petrogulf 108-22.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 776KB - Virtual size: 775KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ