TT COPY $35,163[.]07[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TT COPY $35,163.07.exe
Size

866KB
MD5

81211984335bec80e7fdc1e4b87fd895
SHA1

b9f18551f83b1942eba94c9353f1f76189f6e3ac
SHA256

9bb9b2de4a10d3870ec7fc4f2a2be8341c6e12cb2ae7a97d27adf246c674781e
SHA512

7af7c4e802619c8ce36f698bc4265462f6cbde5b13b123fb0fdfefac425331d22427babd218fe079409b1f3d3d712cc2531aa85ec4c5dd94761f9d15b13d1180
SSDEEP

12288:eEKaJ4eJ28TdpQqUOV12/aJ8/T/L4Ofhd/Ol57ljHiWFvcRcYSoO/vJjv:2ATdpQG1v8rcOZ945hjRvGLSoEvJD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TT COPY $35,163.07.exe

Files

TT COPY $35,163.07.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 863KB - Virtual size: 863KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ