download[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

download.exe
Size

65KB
MD5

c73386c385eecf0efe8b3cc5ae86ef2e
SHA1

f12cd9cf1d90eaad599678039133e65885afa23c
SHA256

afe5135752b85c16c88f34f960469dfe28a0d6cc05ab6b66cf2e47676c087f48
SHA512

55855bf92e81a7d7125d9e393f166fe249a9358636d425b683a06891f8de6d3cd82a9ad6aba9d0f1c1af8d4ad7aa2999bcf647f84f65c272186f4c7aab74b7c5
SSDEEP

1536:g+BALBQBF1B5BIBGqBGBpBKntuUGOY0HYErqtiAuI:TBaBQBF1B5BIBGqBGBpBKXGyI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
download.exe

Files

download.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ