2pqKT13vbzCHnrl[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2pqKT13vbzCHnrl.exe
Size

861KB
MD5

ded62c13401c25b8d40024366f932daa
SHA1

775cb7421f7c6616201c52e5c0ff5a49e8b8e8ee
SHA256

c4d61401b682f67da79981fbf0df579b7e34b94495c9a5c88b4038a2a1df7a5c
SHA512

ead8299a0eed157032491649d656d0639b9eb14b46f4d189b3726b54eb2399cdbff1f4a320a16f83f6bd9eff8a8d07c6f3c1b43877fc9cf4fb14d0d0e915eab6
SSDEEP

12288:LyJhP/OCcLKo0qHJHDwm6Folbdiwvo61soHNdQNp2k+YiX8NPq91z6aeh2IvoiQr:LohXDzFKYsoTQ5k+YiX80K8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2pqKT13vbzCHnrl.exe

Files

2pqKT13vbzCHnrl.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 858KB - Virtual size: 858KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ