Sourceforge_1249[.]exe | Triage

Sharing

General

Target

Sourceforge_1249.exe
Size

20KB
MD5

864e74c0c6eac5503d4cc3f56a80d741
SHA1

8d131c4e73bd77ea1e1ac0ac6c5bc5c4c2dd318f
SHA256

bb03c50f22d1ebe124d8397f70bec91d982485dc31c7a3131b078c544b371067
SHA512

2e71729a810268ed9081b6394a5d623593ee675612f12049f91d601ad32ef7eb4d981de5836e32fc7776550beaac8b6ead81e41a86e46f71d4f8f18b0e72ab33
SSDEEP

96:QMWlb7cbBn+mr2/3P8m0ZovgYpbzLaaYcvqqsNHGmAsQptWtV/cR3pYKgw5AlZl7:QRGrLPSDpfxv4pw4rU3pYKgwKZ1uQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sourceforge_1249.exe

Files

Sourceforge_1249.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ