Sourceforge_2420[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sourceforge_2420.exe
Size

132KB
MD5

d7a002cb306e22458dc84b58d965feab
SHA1

3c6ad31e3adfab33655ffee9e9cb9f699945aadc
SHA256

26ccb4af2275118f6d6012d6201e7a8ae458b6a11e165a52737b2309bbd6bdbc
SHA512

9544a8d3e1105928d926de57737f74e8072986da7e2cf33c85a0a4af26d28537096bdab4d184e72a5d36357049eb80cc6ef6b83b740fba83ede51048b6088edf
SSDEEP

3072:FryCXQ/gLYRg/97fyVOTUryRXeJu67YeObyDF8T5HRJQAP:zfX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sourceforge_2420.exe

Files

Sourceforge_2420.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ