SandboxTestPacked_Timing_IcmpSendEcho[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SandboxTestPacked_Timing_IcmpSendEcho.exe
Size

122KB
MD5

81b2fdd30929c0827ce8dd0981de8f65
SHA1

ebb7db15c6791fc21f174546e0a08f268d2c2d3e
SHA256

fda5bea391e1d945bdab8db7401dc9f4046f5f30954861c02adbba010b64c8a9
SHA512

137a307b8a1e6b1bd135b5f4a5c2f3eab445d46d0b9525da4df05241fdf6dc4ba56be1937233754af95eb979acaa43824eb9935c138bc56b5d8380bc695521b0
SSDEEP

3072:u+5PKsnVO1SzXMNP5LU4kZ41i206GNVEyoXFu8893i7:tjZgdw4g9rVEyoXFuN93i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SandboxTestPacked_Timing_IcmpSendEcho.exe

Files

SandboxTestPacked_Timing_IcmpSendEcho.exe
.exe windows x64

e21ac9815a2da2fdca7757339a6c3c00

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

GetSystemMetrics

ws2_32

gethostbyname

iphlpapi

IcmpSendEcho

Sections

.MPRESS1
Size: 118KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE