1915[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1915.exe
Size

36KB
MD5

a9d5eefcbe944a81c4d1544c5e9162b0
SHA1

c41d76889b098938d4bfb5f8706994d2c106fa23
SHA256

0ea11f1cfa46f86cea20ac50b6e081c97bba290bb9658eb0ccee30c8daabc8d9
SHA512

6396a004c7251818d96c950c845530ab870180e543c50f3f24cf454df31577e6fa3ebff6e9062a868addc48fc8503df497297059372b1787c9e6a5650f6e47b0
SSDEEP

384:T2pKXge3V1wzWSRklVoSrm0y0hidR4V5sOz8JLNkIcb/WqlGMTDS9yiyXYEmV8ma:ZI8kM/Wq+yXdmV8m8cpq6M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1915.exe

Files

1915.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ