tmp | Triage

Sharing

General

Target

tmp
Size

3.0MB
MD5

4e1b236777a3df1b46b2071b10af84b2
SHA1

a890e6593ad961a91e5928e57b2206091f43175d
SHA256

87afbe551c15b8bb9adb7737c5c2654123901412c6b6428dfa7cbbebafcb7364
SHA512

da9178212eac740fab3a1bb72a66d8e6b06b4262f390c0ca50458f9ff2fc8dea78ed0b61d659d8627b7ad03a7f3ac2ff3ffa2d961e2e0e91d279d39ffbfd6b90
SSDEEP

49152:kpWnh7AJ/B+H5p3m3hu/JhqUaHcX5iuhgrkjuZoHdnUDUTpLOSmJmXOMkdmr:te5W5p3qh6hqUHX5ijoHdUgTADJmXOpo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ