dfa13488e17563586e4f0f5348232714[.]exe | Triage

Sharing

General

Target

dfa13488e17563586e4f0f5348232714.exe
Size

19.9MB
MD5

dfa13488e17563586e4f0f5348232714
SHA1

b28e1dc461365486b8e2355dd5be9ab363c3685a
SHA256

7ade8e9cc5023375d100ff66a55971fe3b7a06e73edaec66ed0595b9f252b52e
SHA512

5c5341e90a6da791c4b81476a6a169b75cd963eb366ef36bacfc94ac0cd78c6d721bb66fd7569e11beab41f6b39523a20161d184f18deea7b8912b70b08d8f70
SSDEEP

12288:S8SnG5jbNCUZLHVaaj7uTPUn0S6M8RLO4VsypU:SjnG5lCEGTBM8RLTz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfa13488e17563586e4f0f5348232714.exe

Files

dfa13488e17563586e4f0f5348232714.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 358KB - Virtual size: 358KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ