Signed[.]PO100627[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Signed.PO100627.exe
Size

581KB
MD5

dd72cfb4b607b1e54d22b3255899e2ac
SHA1

358b31fc8d61d893c1019d9bc9ec77002702f622
SHA256

dedbcf045daad50ab0606d57e2f071a0375333dbdda6e6f197e8c028809f5ba3
SHA512

757b94e906c25a3de46cea3cca8929e8cbbda8538eb6d499dcea6fb2b4c8a928a1351f82d8266128c67a07d18ffb19f6178a20fbeafbc7e2537ca28258ab4d31
SSDEEP

6144:1MdfWo0AfOr0Rl6PYOuH8Os++3nA2ujzjjI1QIWh5Ls6XzO6Ez4T8sSvXOAuAl0j:WFWnzuIb3920WfBX3EDXnuvL6FutFDz

Score

1^/10

Malware Config

Signatures

Files

Signed.PO100627.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 571KB - Virtual size: 571KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ