CNET_209783[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CNET_209783.exe
Size

3.3MB
MD5

19f03debd7b5808bd0d7094fd086eef6
SHA1

a3af49f193ea111e3d590211b2f087580e471438
SHA256

cd097a00754cacfb448d8b524bdfd003e57efee7d96ed3bf8285872d8a5e39dd
SHA512

01dfbf2b25d732e819e1b8b79cc37e6163ebfd6428459e88aee39ff0e583e76e1bd8d6dd04ed149f2d4bbefe4934e9c6c94dcac65dc199e2737b3a7aaf3676fe
SSDEEP

49152:ox/gRvyw7Y8aqU/ANBmDliEYJlZrgMMTyIqa1Qrr6p:oecw7Y8an/NIEYJvgMMTyIlerr0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CNET_209783.exe

Files

CNET_209783.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 636KB - Virtual size: 635KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ