test[.]exe | Triage

Sharing

General

Target

test.exe
Size

1.6MB
MD5

0c98b09d9566ab89b3e0ffbcb30db850
SHA1

4d8648b02ede315806807df68c384838291c5856
SHA256

59cea15e8e6c3c373b31d115bbbb493ae2391993240949b85dbce2cdd0cdbcd0
SHA512

51c99bcd211e391380fce5df863171ee89ab09d79dd43ef39c4514e8e39da7cfcd784def3348660f2d22c7d9cd81534300a6c2d63ce213747b4fa7d859731877
SSDEEP

24576:1xq2gMwjt8yLTda+0U9jyJnUX/c70Ph52tgmALxXW9kZNT3xC0qD2VIKaKbxA:Su8TdT5X/c70PzxXWC/7cC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
test.exe

Files

test.exe
.exe windows:6 windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.vxil0
Size: 1.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vxil1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vxil2
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vxilx
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vxil3
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vxil4
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ