840[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

840.exe
Size

57KB
MD5

16ac976e265d7d80ed69aedd6b92b395
SHA1

d44ab4f4d0729dae4d2f0421e4c75ad7ba776e9e
SHA256

2e91f8631be52c05225569a55ea83fe23797a2d24e6bea35cd91007a2e44130c
SHA512

01d7b00e178151de3654ff605bb7be360c550f653ab0e11a81cd7589c4b63ee433fb7dc256d93d81ad9e1235fbb7a7ee7e0b809a0baa31af915d26a128ff6230
SSDEEP

768:X7EGKi2Y25eoeXLNrnLkbw09WISCVYHX7IGB0L2Lww5l5CwX4HEFf1uwCvIFvoN:WgDAdYLIm1LwCaEfQwCvIFwN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
840.exe

Files

840.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ