70a49e9b98d9637acc87a3e6db88c73fe8d425eb25ff221e592bd600c24d76f2 | Triage

Sharing

General

Target

70a49e9b98d9637acc87a3e6db88c73fe8d425eb25ff221e592bd600c24d76f2
Size

793KB
MD5

824526d31060755f128f00c2d4564dbd
SHA1

71fbe25b846930bbbe65e81e888cfc667b44c061
SHA256

70a49e9b98d9637acc87a3e6db88c73fe8d425eb25ff221e592bd600c24d76f2
SHA512

ea57e207c42ea15a55a28caf759a7b2a112aa3a5e51699ca5977d3a8f442414c3c5db9410e775f047e39f907d1af83493b067eda0ae054b22a5fa1f23f082f47
SSDEEP

24576:YSoxhsZ3zCYbQQ2Zo5pnNpF8Jhpuu0bphGuVB89HaYHS3:YtSFz5kZGnNpF8lsj6DY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Halkbank_Extract_20241128_164557_1988850.exe

Files

70a49e9b98d9637acc87a3e6db88c73fe8d425eb25ff221e592bd600c24d76f2
.rar
Halkbank_Extract_20241128_164557_1988850.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 858KB - Virtual size: 857KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ