executable[.]968[.]exe | Triage

Sharing

General

Target

executable.968.exe
Size

881KB
MD5

75a15e992396fcda9e901c6b5e4d7172
SHA1

b3806379dba5acd60766bbce0e84a32740c9a6c5
SHA256

add7fbd1c23ea2c93f100ca8797a56a33dd2fd1feb9b9e02ffd3372da644f7a6
SHA512

d56a4340d85d4eba64ca157ffe8b2a6ba3dd2a660631672683915e6f58c1a145f7c495c118d43ad4e0d4be46f2dbb7d552f83119c57ce86f160f10b34c039884
SSDEEP

384:Ln3vJy2zsgmALBw9t1gJKWZLLAKKKAxc:LfhTwT16xmc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
executable.968.exe

Files

executable.968.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 870KB - Virtual size: 869KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ