98936[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98936.exe
Size

640KB
MD5

f78f56e1e1396e75cf4eb1a1ffe52452
SHA1

b31e871acbd98b2f589f8f4cd7d8929fddea7a8f
SHA256

7fe2197e15ae1cc74a0422f0ef1ede8a2825fac14cc87441dc2c0f5a767ff246
SHA512

2c3499e328602037215c9ab0f1570db0f817b6efffe4438d5ff7d5fdaed4ad72ca3651912d151937c593a2b7e07fc5bd71f902d6ea26aaf69e07064c3912a1fa
SSDEEP

12288:oVtPplTY6RhKuJPdlmdSNMg2JCnpw+Brw03tR4ry69nBwb:oVJTDEiPyd+7Jpwwrw0fY/e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98936.exe

Files

98936.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 621KB - Virtual size: 620KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ