2fb479e[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2fb479e.exe
Size

569KB
MD5

1d1ff09f738c9da2a7087a45849ad9c4
SHA1

002a6145c7356e3aa60b9179bd636413b912dd52
SHA256

198fb9d91a5c26111984ca9857e0eaa32a6725c9badc4758c82fb8333eb6d53f
SHA512

6abbc8fe15b9b79084950bf1ec5b4ea8c5533e8240794f34b4b325da7a2d2ca8dbc41ec31a1c7bc6c63194c00fe8703dcfb6e2100089f3336c4cba9e1aafa2ff
SSDEEP

12288:CID/U41grFJpqdITcvGy8vjlQR+y8x/zjcfy8VQYPmmVljQ:Cuqx9TcvIaWx/zjAQijV

Score

N/A

Malware Config

Signatures

Files

2fb479e.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 567KB - Virtual size: 566KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ