FACTRA098765567898[.]exe | Triage

Sharing

General

Target

FACTRA098765567898.exe
Size

799KB
MD5

b31a4d28756f8a6707e39726b0658ec8
SHA1

21361d667e6446d03f4ae3b0a5b04fac9d99594f
SHA256

4390dddf839f96d8587b2606617bfc5940183f54cafb1d48fc5c1986a31238cd
SHA512

d6171165f4dfc4e03bda59b2ba768de44e5c6aa7e7d6b47d14437ad6f8ab53af9008fac2dec5c6e92f401a931a75539280bff150ca25b72543eeaecd23048e7f
SSDEEP

24576:Ap9BqmycgiH75BlgCr8GBgagmMI/B0mrlp:Ap9Bqmycr7eCdBVFZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

FACTRA098765567898.exe

Files

FACTRA098765567898.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 790KB - Virtual size: 790KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ