d052bfafd51f825c6a2f62aec93e58c399ff13a76fbc2c8d50cc670e768e73a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d052bfafd51f825c6a2f62aec93e58c399ff13a76fbc2c8d50cc670e768e73a7
Size

129KB
MD5

a1e992043efb190f73014ce59f413586
SHA1

afbb79ccc6f8fd33e7d735591ba5a10b5940a72d
SHA256

d052bfafd51f825c6a2f62aec93e58c399ff13a76fbc2c8d50cc670e768e73a7
SHA512

ed9ef2e393eaed5d9346cf2a2c7a9be759dd3252e81aac7a5bc482d96ba9a660084046640683562686c1e9810fa050b503db40f7d421dee40587a7aba53a2cc3
SSDEEP

3072:R/fyrSyw2H7odwYMwBnl2UnxKUN/yZnQtkK3OBREY43CX/CB:RH+w2bod9TBnl28KpZ2lY43CX/U

Score

N/A

Malware Config

Signatures

Files

d052bfafd51f825c6a2f62aec93e58c399ff13a76fbc2c8d50cc670e768e73a7
.zip
Vale_Presente.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ