AP105[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AP105.exe
Size

442KB
MD5

ae49d54abe6dd54cdfe77e58b25d5fe6
SHA1

c8ffc8a123d55da42b657a1be709c1680c8cba8a
SHA256

ee9b5d3d1ec17c2f686014667e62dfd37ac648445c035f4845da6e905fd2922f
SHA512

fbd5c800963ccfe5c3c8451adec5ec57c662c34cf71b02d6752bcdfddbbc16520cce57a53ac712ebfecc10c9892cb053fdd46213f945b45a8ec4d4fd62a22940
SSDEEP

6144:3oWTY+1uFV5yQi+dt1aiRb3mNvNZyUk8suGt2RTh9rA2OoGo6c:YaY+1uIQi+dtoiENhk8Uc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AP105.exe

Files

AP105.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 428KB - Virtual size: 427KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ