Sourceforge_3699[.]exe | Triage

Sharing

General

Target

Sourceforge_3699.exe
Size

68KB
MD5

29b5204b880c3a28937d13cb48e7df00
SHA1

5f46abaf18e553aa08e50b9a8b2144b5acc22307
SHA256

120b964e42a565f4d0837a800a1c4765b26131ad1edbd76f9514ae5d8c3c1181
SHA512

c7dfdad7c5ad56d1344d9bf81ee8704410cfdc74c13bc88fafc2d2a447ab0044bbb39219225d6d39402d25d508032e4582cf4caa896c6be5ed3454682105e523
SSDEEP

768:RumQKNJzzHfSm4lIqgl58J+1xUgbtveOapZwhVl/nRK:k1Q/SUqgl5o6xU2tvedpZwhVG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sourceforge_3699.exe

Files

Sourceforge_3699.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ