SA-282339442023[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SA-282339442023.exe
Size

698KB
MD5

3e7748c53adbbdc9737bc52cd96c8a66
SHA1

2beb8bfeea9e298266c9dc6859393d71cb295cb2
SHA256

0e6633487cfd9697135ab20efdfa81fcafacef20596802e90360255ed226b5c5
SHA512

b14c6f5eae11f792b22cc5e842a4a379c36481e9639ae5487e60edd97f62bc336efc3f5e2016e35c791452996efd6e3b5913f163ff7377a283fb47b8be4fd6b8
SSDEEP

12288:5rjM5uxjcrWsUPEfIifqe8ES2FTL/Au1o+WWjQkwHntu:5r0w2IPEIbi1BXjx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SA-282339442023.exe

Files

SA-282339442023.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ