336ecdd5f5c040f5d3fa238ae4b4813ebc48401500d2dfad0604fa9f[.]exe | Triage

Sharing

General

Target

336ecdd5f5c040f5d3fa238ae4b4813ebc48401500d2dfad0604fa9f.exe
Size

3.8MB
MD5

03e6a233c9bf8b86d7d7fe3a046ef507
SHA1

63a993cfeba3beab665f8518e2a9d5945edadfe4
SHA256

0241d42cb4f359df2c67f35b03019c1fa59b72507d49f5cb83cd8b1dffbd8850
SHA512

7911d620ea29738c3dc2e353faf1253f4100e20b6d1cf326ccfdb2741d45778daa31387f94e86882aa367efa535610ac892c7e3e0cdf7645d5a5585d26059b63
SSDEEP

24576:8yPRZPjShIghUnYbXCdK+umvEragNhB5p/URnO6VAIMYs:80jS+gi4CdyTPXp/URdAzYs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
336ecdd5f5c040f5d3fa238ae4b4813ebc48401500d2dfad0604fa9f.exe

Files

336ecdd5f5c040f5d3fa238ae4b4813ebc48401500d2dfad0604fa9f.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ