b6e17940c2b372dccc71fb1950a8c3c8[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6e17940c2b372dccc71fb1950a8c3c8.exe
Size

887KB
MD5

b6e17940c2b372dccc71fb1950a8c3c8
SHA1

ada7ea02eff3e21b079cde25a458cccb7111e0b4
SHA256

78b45024f4ce309e9091f88bfb65be3bfa6afd5699771d0d82b31aa085b1a111
SHA512

e76e6d9314071c5a6666a676fd463d911745a75316a6b4fae549d9c132d56a0a6c12551c9a4615ca7fa28bca77ba48a86d6243e34cce870c5784013e75f7bcfb
SSDEEP

24576:cKGT8P0JZzGyDLIJDfaV0vrUVKMZRbrmI:vP0VLUDfaV0vrUEMZU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6e17940c2b372dccc71fb1950a8c3c8.exe

Files

b6e17940c2b372dccc71fb1950a8c3c8.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 880KB - Virtual size: 880KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ