file[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file.exe
Size

1.2MB
MD5

54121b027c15c35210d09c03dd97eb10
SHA1

cbf3d10f8468ea75b58459b3554b46bee3f589e2
SHA256

6ca16541b066dc3a104efe166174bb08bf13fd1554e0af4d1b0e4f337e3ded40
SHA512

0bd783177db960d6317b43c9e86630a8b3d62549bc0327aa45d70a37d6fa98149e29ce073f5155c78281e0c1cafd8f386095042c0f944d30f28b71bcab0b019a
SSDEEP

24576:bnX7X7EKuJ1LOgT3p/xbH25z00QZdX8dZ4gemlS0dvsEniGPT8F+IEoHNw:bnLYKu/Og7DbH2O0QZdMv4B0dvsEzPTv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
file.exe

Files

file.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ