29e5d8ccffd187b6311f0efa886956a9[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29e5d8ccffd187b6311f0efa886956a9.exe
Size

599KB
MD5

29e5d8ccffd187b6311f0efa886956a9
SHA1

2548bc9696f9c26f5bf42f1065677208e349ad17
SHA256

02bfc35c02d4e7bd4ae5cc0867de4b656513e6b1335b625c13ba06ec78f5c4e8
SHA512

13708d91cc3f3e8d3ed2aa6736a7218665ab29b66332d37994fb3dd561fedf314762aea038373b35285e1b7aeb594c8d723148cbb0e06cd5516b9b5fae422ad9
SSDEEP

6144:qOTwkk65ywxtOLH3F7382G9chNFg2QGZ9LjalFi8Xs2+zIKt5lCFzvdl7tCrQDGv:qOTPJwH3R82QQ9QyAlhc2+kFzvcrCG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29e5d8ccffd187b6311f0efa886956a9.exe

Files

29e5d8ccffd187b6311f0efa886956a9.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 544KB - Virtual size: 544KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ