z38mMGGP12sAiPAQdF[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

z38mMGGP12sAiPAQdF.exe
Size

766KB
MD5

651ef8aebaa58f7c97248d3b256f8f32
SHA1

01f69644c87573629d84ceb6633d64fe51285f18
SHA256

9b4befa92d48b40b7c9e687e84769fa291f310bedf9a4f5cd5aa56ca09ebf208
SHA512

5592b550aa34d54b26f2604936de2226117c24d001bf8a368fc21372b53c489b43e910bf0c8993a781d7c80521744886121864ea4312e3039aa3219eded8affb
SSDEEP

12288:7O11KeONTaCdsFEHRNuHGJLzotQZAVEpvAQli9FrDKcZSPZ0GH:KPKTNuHExNxzo3UImKFnKcZaZ0G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
z38mMGGP12sAiPAQdF.exe

Files

z38mMGGP12sAiPAQdF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 763KB - Virtual size: 763KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ