tmp | Triage

Sharing

General

Target

tmp
Size

634KB
MD5

b40484b0048fc319745734e99446d4d5
SHA1

4355b572fd961dc13209da3e478c5fe8a6fd7972
SHA256

433eafc4e6bfa4748bfe8f5a69bd4de4214e6292f3aa48f9be3d12427fe5fe7e
SHA512

7ca9eca5301730c97796e8bc33dd741b702fe0551dc94d0e1fbf75f9fd06b74326f5ae9c2c43e885abfacd13480e78666e31629fdc2507bbf8938d0866e6c0f5
SSDEEP

12288:b2iN/OUr5akuFTJ+/b8dpDs8+3zv2aH3BfIIioSzM:b1hOC5a5RJqgDbwtIroSz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 565KB - Virtual size: 565KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ