02736699[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02736699.exe
Size

743KB
MD5

0d2515ad9092bd07e1bc20bbd8edc76d
SHA1

b482050f576680f123abe4fbeb74ccb0e7ee7d8a
SHA256

12bf15f7a36dde34a0ab6dde0192fd9769c68e124cbedf9a08bf9a2930ee2b9f
SHA512

feb858ad3af6559bedb7a8b2514251a9c36725a6936e5eeb0a052b659b17bdbdf376579028a70876189f6734a4e188c4acbbbc591941a5317deb93ce64d7897f
SSDEEP

12288:huCas/16/YHmM9mARLAV+/32672M4lS59/kYWJv98RzvbLU7rEQF4nDg3i+nBhxK:hks6cV9mA9ImkM4MkTJFCzjLslm+9k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02736699.exe

Files

02736699.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 732KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ