0001[.]scr[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0001.scr.exe
Size

68KB
MD5

dac313a520e16a0aab100ba84cce958e
SHA1

745c953ba9208ea8807228bceeb7d6ad0bc9b502
SHA256

6fc7189791af4f2f113700770fc02ccde3e34cdbb2d886ce7e9699a27ddac970
SHA512

e812adbbcd06140aec54f47d4c7a83388ba113dd923c4dc4fa5ac16175c83fac3530722a4a61b2d9657b56ae5c7235494fd132b292ff170f2d4180c6c424df4f
SSDEEP

1536:5F26XalyKbpHr0lV+8WMjhwrE0flZ+NdFiFkToWsvvT:fbXsPkV+8WihX0flaQlXT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0001.scr.exe

Files

0001.scr.exe
.exe windows:4 windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ