tmp | Triage

Sharing

General

Target

tmp
Size

310KB
MD5

20b05ef6a9a219260ba6a0603687db86
SHA1

6668a9d1b2a3a03c04c95b239259f2fd5930be16
SHA256

6c2e104bb3a97e3f5054b9436ec4f200cc6187a051f67f19a97856655e9175fa
SHA512

a488411dd38814eae9073a7f8198152a5718bbc322ab34851c6df40580663261c10f7213c87d1011e02e478a19496ed47dcd19d2acf6bd48cf64b07ee60ab101
SSDEEP

6144:ekI5HaDvw7Df3ng6Rq2ZNqDAkOtbnzjaN09ww/KAz/w5QRGR3:5nDvwnngCqUcDPOpSOiw/KAFGx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ