sam[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

sam.exe
Size

197KB
MD5

40e47da215aac82affa593c2f1af980d
SHA1

f569e18a9a374f7efe773ae65536690e77920653
SHA256

26b37bf5a06c181609814fcb4bc6ffd35cb5ad5064227f110bbb564752ffde2e
SHA512

0bde50ae5e0570994c87ec67506ef5e4af1948a2e2d5acee05ea2c0b41b4e15fcd5a2e9f3f740fcbf79250b9ad31b2dda90b9f83546e59262bfc33f360450acf
SSDEEP

3072:aLzBPB7oW3v7rpeQYe4cB5PnjUsrZ1iTvuipfjwChN6r9ureOJNPLw9H:iXCe4e+sN1iuCSurTfDwB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
sam.exe

Files

sam.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 194KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1024B - Virtual size: 695B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ