challange_Benign_daccc66487f6c11736e781a42ce6e514bb828c8d331c0c8571a25e484c53c26f[.]exe | Triage

Sharing

General

Target

challange_Benign_daccc66487f6c11736e781a42ce6e514bb828c8d331c0c8571a25e484c53c26f.exe
Size

12KB
MD5

2e87ee76ceed406a6d59f195cac1731b
SHA1

528e962c3ad09d121bf038ab8b25742299478c63
SHA256

daccc66487f6c11736e781a42ce6e514bb828c8d331c0c8571a25e484c53c26f
SHA512

426dea573ba2e94983cabcb3b85165c39f3fb0a605b7e2d9606d3df13d2d5124f544e155d7ad0a87420750d56e292a4561bbf0131c78fde963e3b6a8d32fcea4
SSDEEP

192:Fz1fAFq7tV0zFGos8oGjJfyB7IQ9XTAjpfa7k7yR1+R554nTw6ru77u:FNAF8tcGo7JfyvTAFfL701+d6ru7a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
challange_Benign_daccc66487f6c11736e781a42ce6e514bb828c8d331c0c8571a25e484c53c26f.exe

Files

challange_Benign_daccc66487f6c11736e781a42ce6e514bb828c8d331c0c8571a25e484c53c26f.exe
.exe windows x86

f7b3126caee425926d37becc91d180d3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CloseHandle
CreateThread
SetThreadPriority
HeapAlloc
HeapCreate
HeapDestroy
Sleep
CreateFileW
ReadFile
SetFilePointer
FindResourceA
LoadResource
SizeofResource

winmm

waveOutClose
waveOutGetPosition
waveOutOpen
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite

mscoree

_CorExeMain

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ