challange_Benign_bf953d0646851af3f23da85a6568a4320e903c94ca2556a64795a6fc971eedac[.]exe | Triage

Sharing

General

Target

challange_Benign_bf953d0646851af3f23da85a6568a4320e903c94ca2556a64795a6fc971eedac.exe
Size

6KB
MD5

1d8106bd724031e41f6f226e159f1068
SHA1

675dea3cb39db590cd6fd802ec1cd6e95b5c8c49
SHA256

bf953d0646851af3f23da85a6568a4320e903c94ca2556a64795a6fc971eedac
SHA512

18a42cd17d4972eaea5b04d290a437a1cbd728b5c0fa723352864a4bf8cd3087098363a3f2fcacac62744b4b230784885260a3e27d2640cdc9abe91368f54613
SSDEEP

48:0PZio/7a5/WeNCpj1IyEzje5KcVz0Us5TA3V9PtrVK3O9K3O0qo5vEuu6PLJD9b3:0PN7q/LNmJxEz9QIlC+f0o51RLJ13

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
challange_Benign_bf953d0646851af3f23da85a6568a4320e903c94ca2556a64795a6fc971eedac.exe

Files

challange_Benign_bf953d0646851af3f23da85a6568a4320e903c94ca2556a64795a6fc971eedac.exe
.exe windows x86

1ebafde3d2504cb507cb357cc075d006

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

crtdll

exit
fclose
ferror
fgetc
fopen
fputc
fread
fseek
malloc
memset
remove
sprintf
strchr
strcpy
strlen

kernel32

CloseHandle
CreateProcessA
GetCommandLineA
GetEnvironmentVariableA
GetExitCodeProcess
GetModuleFileNameA
GetModuleHandleA
GetProcessHeap
GetStartupInfoA
GetTempPathA
GetTickCount
HeapAlloc
HeapFree
WaitForSingleObject

user32

MessageBoxA

Exports

Exports

__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ