SDQ0009000[.]exe | Triage

Sharing

General

Target

SDQ0009000.exe
Size

432KB
MD5

aa6f835df3489adb6f029c9a4d46cd12
SHA1

694d538365aedc22b84b2618ff159ac5bdd93b36
SHA256

7db30520cde8d37f8875299b1182c0e56a0a47d995117c1be330d08b4de86666
SHA512

41669f15e95b5c726633e4b687bb00a3dbdd3d0e11247bfac5da8f7240b682d9a2937069d402aa588c25a83d8d2abc17f55b626e65c3acc3b3297b1187ac3b50
SSDEEP

12288:6Idy41a0G8DKVoMUyW1/NIyGbNVim6omwJBS:6jz0QVcv1/NIyGbi2mwJM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SDQ0009000.exe

Files

SDQ0009000.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 398KB - Virtual size: 398KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ