tmp | Triage

Sharing

General

Target

tmp
Size

1.5MB
MD5

06168af4a9d358eab028fb62b550299f
SHA1

ca5f4a9bf1f5aee03299662b0cf1289f5a786bde
SHA256

3af90f03d3c66f34961a6a9f07d2df0b51fdebf346900bb5cf564c8956a32a50
SHA512

e48f94361b82160cb26090022ae762b8d9453b37efe8ef64e67d828abe8a81fdfd73b9528365750f46bcde2c92da0ee8a9f3f3e7086a1824e71017bbd1d62c12
SSDEEP

24576:J6oV9I0oh2pEGxobDWMAVx123MBAKx9nf4L7XFz3zI9oRe:uhEEVbih123M6KDnfirFDzI9o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ