Pink_flufly_unicornds_dancing_on_rainbows[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Pink_flufly_unicornds_dancing_on_rainbows.exe
Size

2.2MB
MD5

093ed923fb9bb911310b9c1200ae80fe
SHA1

3549cb91d65d1ff80e8d49cfb208b1c779b3d0ed
SHA256

034966e9b81e8687c5866be4c226c33354a4eb52c24c4bc7af3fda34c7b5ae54
SHA512

e72e0f24003d6e9b256d14c0307cb1968a628f323f53ef226412e608d15ebbb7b8236034eb7f594b9824ebe569c7350f17e99ba7388ec3b7a94ac770d564fcb4
SSDEEP

49152:VTot1zBQZgp2F3+anG45crD87RdqalFqGxfjhEIOqIIhr:ngIF3+WG4OrD87+A4CfjhEI1IIt

Score

1^/10

Malware Config

Signatures

Files

Pink_flufly_unicornds_dancing_on_rainbows.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ