ABRA COMO ADM by OMPNC TEAM[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ABRA COMO ADM by OMPNC TEAM.exe
Size

90KB
MD5

f58b940d56533d5b7c059a5481e39981
SHA1

360ce3a712c390f2faceec54af17699d0c70b223
SHA256

fcf49e82b348aab5148c2103c486a2ef53b6987142187bb6318630d5bbf3fb58
SHA512

ca5b1ddd9405fa659d28e3ac7412476436652f881c8d0636c3995117acbf9b570fb73f2ada7a765281b8577cee2abbd2b2356a6ac142901a457fccc47bd72186
SSDEEP

1536:IyWf/Dz1oNG4LUMn6V1JtMJFELAi0AbJIiOFPFsilLrKiMMPYwqNLwVcl:hWHDxog4LUM6VFMJFELAizbJbOFqilON

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ABRA COMO ADM by OMPNC TEAM.exe

Files

ABRA COMO ADM by OMPNC TEAM.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

(aUOqG
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

پڇقؽ
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ