url-map lidia[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

url-map lidia.exe
Size

12.6MB
MD5

1d8cb7f38b3cc175aca2c71d8ff72ca9
SHA1

f17ce58a9d083f4237fb1e1eacfe9c0893ce7354
SHA256

7fb04a7bd7b8f56641a953df757bb9b6b597f4119d80cdc76d50abe52058cba6
SHA512

8f3e12d55737004a23f8d0b1165863272ddd33f515536eb64178b3f4a472b7800d237b7f52a39aa85b69eb138d3ab4c8f7ce7973928f4af90c82d0758316f733
SSDEEP

196608:F5UafO02ejIgELJMMcYEeieUl8SYod+CM3zL6CQ5NPebsJ7EbMHc20Potf:r7OZg46YzieUqidvMjS50yQbM820Pot

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
url-map lidia.exe

Files

url-map lidia.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12.5MB - Virtual size: 12.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ