para[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

para.exe
Size

865KB
MD5

3389b7aaf05d1424ff6fd4e1ff0ea11e
SHA1

e2c5cbaabd81864c63cfae198999073436ad749e
SHA256

c26e6e96f70d4e90215671fbd6943a8660ed3933cd78666fb6514f7666d1498e
SHA512

6244edebba7fea209d6696fe111a5edda863c85669aa3d8fea4731d9e6b0cd544cafcd0a55462141c5da036ce244dc4e20518fdeb68024f4ba36d1e5ff586a52
SSDEEP

12288:VpLCF2kbB2gB2iNdtb449OOIWYB438RypjNKvZlvI8oBZ2rW:VpLCrV2K1ntbp5b3qUj+ZlgP7x

Score

1^/10

Malware Config

Signatures

Files

para.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 863KB - Virtual size: 862KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ