13022025_1447_ORA_1866355_2025_1_152_13022025_pdf [.]scr[.]iso

General

Target

13022025_1447_ORA_1866355_2025_1_152_13022025_pdf .scr.iso
Size

74KB
MD5

c384ec6032929a5db046f44ad36500e1
SHA1

6a62cb2685e8dfa16b541a92d55f9bd697357439
SHA256

8a8b4171c1e87e7e8ed5c39d2334c31a307f50137f1e36f938d5dd312315fe58
SHA512

1b029090496888ce86f0e2c13247f85743e7f74c14e1053bee1ffe59626335ee361be9dcfac106bacf53d11bb86a78a075de985488ea2b58a37a0f73a5a36f86
SSDEEP

384:9/2o7JgiNM/CgnWwiu0/NL3xNohVNw6gOWw:9+krN8CgWDu01L3x+1g6

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/ORA_1866355_2025_1_152_13022025_pdf .scr

13022025_1447_ORA_1866355_2025_1_152_13022025_pdf .scr.iso
.iso

Password: infected
out.iso
.iso

Password: infected
ORA_1866355_2025_1_152_13022025_pdf .scr
.exe windows:4 windows x64 arch:x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ