17369bc1604f3a9469639c3ed1eb1ad8[.]rar | Triage

Sharing

General

Target

17369bc1604f3a9469639c3ed1eb1ad8.rar
Size

167KB
MD5

17369bc1604f3a9469639c3ed1eb1ad8
SHA1

b1a99450d11e5954041de2cee4c4ec3e01706d5a
SHA256

4bbf796de9af8863e88208df7b176edc10111b6129289df42ce2ac2eae398158
SHA512

858260439de60ce53e8e2392fbb677e04583775997ec9e42009f06e9a4594fdf8ea47ac703c92d8ae3f16c201b4de9b8376b6056b845acdc2ce9c1a384c2b595
SSDEEP

3072:rQYKIhnuqfqK7U6Wna3LA9s8t8UhUQWKBJIBiYqwhlYfmiKwLcG5q7OGDB:0YKEuqCKfWWSJt5BaXmfoCdgOc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/VER DOCUMENTO ELECTRONICO GENERADO POR ANDARIEGOS TRAMITES Y VISAS .exe

Files

17369bc1604f3a9469639c3ed1eb1ad8.rar
.rar

Password: 090125
VER DOCUMENTO ELECTRONICO GENERADO POR ANDARIEGOS TRAMITES Y VISAS .exe
.exe windows:4 windows x86 arch:x86

Password: 090125

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ