2a55348b41e5bc666de29f92002b206768a7f6b134e3901e48abe2ae7b4b6b47 | Triage

Sharing

General

Target

2a55348b41e5bc666de29f92002b206768a7f6b134e3901e48abe2ae7b4b6b47
Size

541KB
MD5

9cefa5afea5fad4675ffb709cce44c0d
SHA1

d3710500885a0be57a73da69797b82cf8ee7f677
SHA256

2a55348b41e5bc666de29f92002b206768a7f6b134e3901e48abe2ae7b4b6b47
SHA512

642953cb966183556ac011c137d5f747adfadabbbb219b550e649d1de243988995c73cc82811b0baffdd73c381ff3381881a66e210136e366f4edc8e88e361b8
SSDEEP

12288:qgYAfBxqFSQkvPxKrygmnFYE0PO6kBInDKtS0NCjVM:rYAfBxCknxEJmFqGEgS0QhM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RFQ 675766567456534534534534535434534564456453.scr

Files

2a55348b41e5bc666de29f92002b206768a7f6b134e3901e48abe2ae7b4b6b47
.rar
RFQ 675766567456534534534534535434534564456453.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 569KB - Virtual size: 569KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ