c4818f6a9908f61464ed5c1187f893a8b0a782683db27d0c15f9da93c872bbff[.]7z | Triage

Sharing

General

Target

c4818f6a9908f61464ed5c1187f893a8b0a782683db27d0c15f9da93c872bbff.7z
Size

706KB
MD5

32242204396fc8f3e2b6a6731533b72b
SHA1

99b4ef4b99c7832d68a29b2e0b1bfa03923db347
SHA256

c4818f6a9908f61464ed5c1187f893a8b0a782683db27d0c15f9da93c872bbff
SHA512

e86cc6c35022ec6de24cde65765e57484255dc3422955a561603200cb857ae03803c0beebb901a68b187ab3bdd0499a5878bbcaa4cf68ff0fbbc1e5875cedba8
SSDEEP

12288:jHEyDHlVy5+64OS0MRnlSq1SXn0JmHT2C45kMX1iZoVe0OJE:5l1uMRxoXn00HfskMXcZHvJE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/INV01542 , INV01562-7500003124 JTR-0084.bat

Files

c4818f6a9908f61464ed5c1187f893a8b0a782683db27d0c15f9da93c872bbff.7z
.7z
INV01542 , INV01562-7500003124 JTR-0084.bat
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 814KB - Virtual size: 814KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ