Sourceforge_173[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sourceforge_173.exe
Size

328KB
MD5

cdd9d14becb8cae4de274fb9b5cc064e
SHA1

3b1e7367f2226091f9632b8233df54be5ef94350
SHA256

709a93632d25281693e648e1c6fa671ab8cfc5c18fa6bad0bd2c28379222b734
SHA512

db7637bb57ac30d855c8e7e9dd5c22718fd601ea788f41a7d82cd439870a3bf56cc58ae6c17421251ba20ec6b8f23045bb49e6a8f5bb36903a2422a9a4fd3233
SSDEEP

6144:9M2catfHQtn5jBXD5jC4hOO1Q1JHlm98I6:yCfHQtn5jBTZC4haJHI98I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sourceforge_173.exe

Files

Sourceforge_173.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 304KB - Virtual size: 300KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ