file[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

4.5MB
MD5

8a1d7b15b9a0c2e304462c7415b1ea60
SHA1

12ff557837a0c51b28cb431ce05ba37a15e834f4
SHA256

f76d296b3f8d57ec60f74b67fb82538279327c48a3235928cc2d62b59831bcf6
SHA512

52b5c7ae90b0187bc01c19f66bdf4b576f2ab7ff80b53988a701a4eb7bebc961d022510c2f37b96a1ff14234c1e62c209b0a0ff7890c986440166481cd8bd3cc
SSDEEP

98304:nIbRLFkNhpXGCuIofTFPBfHhUWmfHkyl4vXdLrsGE8VgWuSW5x7R:nIdpcYJPBfHhUZHkfvyG8pH7R

Score

N/A

Malware Config

Signatures

Files

file.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 535KB - Virtual size: 535KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ