AP201[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AP201.exe
Size

374KB
MD5

bc3b150bb3a442d4b690bcdd32fa2953
SHA1

2a4ab1fcb58cbea672812f518ee2efea542911ef
SHA256

512d269c450b790aa9b4f8d2d4e118e2c39469dd02b4be760b54faa6fde94ffd
SHA512

98f955ec1b5d23e2fa521b1cb04913bf8c4371de57dd79b55fec765d2590d867f3b461c3916f4e0ed43b71d10e82fa2d06a2686efdea98c213853863081df223
SSDEEP

6144:6f7uYJ+blU0CZ/hmHcSs+2am4N2tDiZS8KXZ/C9Op5d7/Vo3:07uYJ+bz/Hxs+9x4DiZ/2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AP201.exe

Files

AP201.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 367KB - Virtual size: 367KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ