35352[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35352.exe
Size

613KB
MD5

692bb631558c76fb78bbe839443a6f92
SHA1

2a617e5cb0376bccad169883b7ac0ee70e56eaf0
SHA256

875eeaa0704d70d88f6b7f33996f7e341940657284eac3b2a48386877c40ea8b
SHA512

21e41de1d927407e005e6afe1cf459b7b2850ba6ac2d70bd312e358743102242631f0ba4f40c1ca613629646f89d2e9dfe81c71c4ca553c0555cee6c06303c1d
SSDEEP

12288:/d0nwq9AQ+RLyzkWkzMS7EZkKmfluX/CxFYkdcUhNg:/ddqYY07q6fsXu6CV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35352.exe

Files

35352.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 611KB - Virtual size: 610KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ