j9d5JS3eWFwszaF[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

j9d5JS3eWFwszaF.exe
Size

1.0MB
MD5

71f742c74685e87df090d501cee1806e
SHA1

f653bdb54ddc6d7c34f7efa1cf57eb992438b156
SHA256

1eafb5be614c0738f3058b8b92a4e43232c986803631f0adfc1bda9a0745f921
SHA512

061d7f01772fbd95dc46663b7b7bfd9072c903826047add803397f6f83a61b8080fc33f4c8c82bf424a68a95f6d16810cfba364dc49c38a55060d035c4c97b80
SSDEEP

24576:SPLaVUH999kk2ZUKtal/+iUZqRoC3ioIPN6mIHJdxp:4BH9k3SpU/ZqujN6L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
j9d5JS3eWFwszaF.exe

Files

j9d5JS3eWFwszaF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1016KB - Virtual size: 1015KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ