CNET_20672[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CNET_20672.exe
Size

9KB
MD5

b9c4bf3a8db5ede8ab0d83bd6bd0541e
SHA1

a4d91db21f1cc9628dcab561fc0c1cdf47157d89
SHA256

d801e231a89a2cb032167b50d840a154557dbdf712603b4dd091282ba77d3742
SHA512

bab188993c452bdd15c90b6ade21fb5ebdc3f3626fbfd1755da4817b192330060aaf9c0c9dcb26d3ad67c0cb6391c9788b1fa8710fb7eaa8c2d5222af357bb4b
SSDEEP

192:7cGw76GENLCt4fubH/I8ptv9cVupQYqpt98:oG86GEN1fubf5pF9c05qt9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CNET_20672.exe

Files

CNET_20672.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ