Cme32WrapSvr[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Cme32WrapSvr.exe
Size

6KB
MD5

4cf9652f02ed971e21c364c2dd637c0d
SHA1

ef6e73c53062805c723d57365f8a4ac4aaa7048d
SHA256

659f7435a44265725e9843e416c1fa4895eccfc48127326020a74c17307d7cc9
SHA512

77541a4f085205cabe75e72dfb5e4d3dea47da4c08b54c6db2c35b1bb4bd5febf8e66fd7f021f0059199879b9c4a488367464fae3e08e85071a387b019c657af
SSDEEP

96:zkYxY8AdInk5RTFseIitP9jcSGMM6tOOyzNt:zkX9/4ijjcSGMM6tOr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Cme32WrapSvr.exe

Files

Cme32WrapSvr.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ