code[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

code.exe
Size

595KB
MD5

a844d21b6a79fb5b341e1871dfc13d08
SHA1

07fa166b36a2f97b9c1ed81a66e6443497af15bf
SHA256

fc2af967a1af69571fa1c08296d722e59c1fa02cb88e352863fcead2b358fa60
SHA512

07ff68393af8cdd0bd3e43623ae0545d8458c0eb2ffef270bd8111b1142636ba6e46438da3687346cc71fb0c49f15a577454ddb2f61fa0c43acbcfc3e7ea0cbf
SSDEEP

12288:0xgqC2iPeVETZatsLRRGMkWLnbq/iGGwycOU/9vlHyR8DuOMi1lx4KZ1mOq:OgqC2KeuGsjGGbUiGGwyLkvgRSuHwlhq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
code.exe

Files

code.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 589KB - Virtual size: 589KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ