Sharepoint Documents[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sharepoint Documents.exe
Size

770KB
MD5

fc9c8fd16c3da7811f29315f109e09ee
SHA1

4a88dc461623f18da2ce8c72148984295e589d14
SHA256

11ac39821487f87eac7ad91f2d6d94037cd25947d6485a0e974d89fadbf2f950
SHA512

ab8ff1a173f1b73dd3baed977ba7929940198053bd7257081d198349ffe0bca4a481b66525cefd21b5e2ce121df56384f78599b96c8e34a76e1ace56c29001ef
SSDEEP

6144:2RyBoqoqitGYYXcejL9aiUdfnZtyu8LLG9PWQrnDGhe08jf8IGLRd4Z9sd2zlLL:2RyeboDskL4icBzsi1zDGcDmLRd4IcB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sharepoint Documents.exe

Files

Sharepoint Documents.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 767KB - Virtual size: 767KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ