Return Slip[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Return Slip.exe
Size

793KB
MD5

ed07c2c550fa6fe55afc5d683cf522ae
SHA1

26eee5d9e33659c9ff7e915afa81981c122772ad
SHA256

91220ea3c0c0c29ff200847c1b57713f299e74c789cedaf4f0008981203f2995
SHA512

45ed66798e0c9dc5543f85751ab469183cc218673dd3780a7c5dfd6a698d630a674721e811fe12e9a9e8327cfb0ff494bf8f9305b0a323b532dfdcd42e219d10
SSDEEP

12288:CGnNs0n+3yXHcA+USqhO4X6a+h+7E9EqDGCVG0OGWKyjN/q6AU3uZwd:JnbnYlUSqQW6S7cZVGoWJNS633uZG

Score

1^/10

Malware Config

Signatures

Files

Return Slip.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 790KB - Virtual size: 790KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ