16012025_0057_15012025_Pagamento[.]Fatura[.]CDG[.]pdf[.]img | Triage

Sharing

General

Target

16012025_0057_15012025_Pagamento.Fatura.CDG.pdf.img
Size

260KB
MD5

a450b614996ac0ca7de24a8f1947bc51
SHA1

45cbd3a10b756bca0180d06f89d2ec8a9922e377
SHA256

ca76896fb473edcfdce44fa41ab776da23aedd3ecec1589f4b4aa184057166d3
SHA512

086b58f02d3e8d71a3b4a98e6901aaf9f3ce31a0d7776bbfd607f5bb9ab5f00f8820512fe0e533b7eb42d65620b0f7087bf25ad3b88b1d5caaf6d38289e32f63
SSDEEP

3072:h/kQ+3Wsg9t3BdPKN5xezNQNuqscX7wmdTxIwbj7JlxihOKbTvKRAv9/:KQ7HdPKN5xB391VxIoigKbTCO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Pagamento.Fatura.CDG.pdf.exe

Files

16012025_0057_15012025_Pagamento.Fatura.CDG.pdf.img
.iso

Password: infected
out.iso
.iso

Password: infected
Pagamento.Fatura.CDG.pdf.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ