dcb03abc279bb16b9dcfd17b70c9be0d936839c8ea1d7ab8e5361f45865e53be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dcb03abc279bb16b9dcfd17b70c9be0d936839c8ea1d7ab8e5361f45865e53be
Size

1.6MB
MD5

ee3eda811b5b322c2abbeaa9b77a2807
SHA1

674888e46b1ed1f481758d1193f270498faa7c16
SHA256

dcb03abc279bb16b9dcfd17b70c9be0d936839c8ea1d7ab8e5361f45865e53be
SHA512

3ecab56ee578e58cb8d714ea08548d4d0d9bf3d9d15fe293fdf3e76a9480b6f214ac9e48617e3073c89aa72bec06eb9a3d35699330ccf7f566dd9f48527b4621
SSDEEP

24576:MgZdWNjm6aNPoGR+YzrOT8VP75tppnDlAlZnbU:/Zd2m68NoYOT8VP7HnulF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dcb03abc279bb16b9dcfd17b70c9be0d936839c8ea1d7ab8e5361f45865e53be

Files

dcb03abc279bb16b9dcfd17b70c9be0d936839c8ea1d7ab8e5361f45865e53be
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ