01890499[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01890499.exe
Size

102KB
MD5

be346d746be4b0e6b8d9b1a7887816de
SHA1

40aa9ab8e2a67d11a5cb0ced0b8d8d5b91ec99d2
SHA256

bfe3c7a2f8dde48378e48fa7bb4c7a5c8ace07a46c17ff793f3d70d10241476c
SHA512

301522378538d2235633735de25a0fdddd6ace96f44b7b6b4c60c100d5999b2218414fca3a2bb2866f81b5202f59019870c3fa94abf8d99ba7cf7787ce50e199
SSDEEP

3072:umHj4+hhW55PtHpHEJxZ8paysc91Deb2oa9JBc/xafd9:pajeb2oa7B0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01890499.exe

Files

01890499.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ