66546bdf1106858267f20b74f7aea13115252e74c3a5f85482b70e564f660f0b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66546bdf1106858267f20b74f7aea13115252e74c3a5f85482b70e564f660f0b
Size

1.8MB
MD5

4176f7c4f301d2e844abdf4c8a7298cf
SHA1

f8862f6c2815a6c4aa5e8a7d46c1b66318d5da93
SHA256

66546bdf1106858267f20b74f7aea13115252e74c3a5f85482b70e564f660f0b
SHA512

541f802a68e083580215de1143d07f25af8bafdbff93ee984ec737c7f6714d9b201bfa80f9ac6b23355362fab2ed6d6445ecdb2dbf9df8497cee1b2748b5b4a3
SSDEEP

24576:SHstQKeB1JqJlLlRNouIKZqzPApw2BDO+7nLl2n/7a5Ox30UDLap:SopeBXqJou8Cw2BDO+70nW5YTv+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66546bdf1106858267f20b74f7aea13115252e74c3a5f85482b70e564f660f0b

Files

66546bdf1106858267f20b74f7aea13115252e74c3a5f85482b70e564f660f0b
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ