Sourceforge_2895[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sourceforge_2895.exe
Size

76KB
MD5

e4a420bb2d924f6f3e8ce7ce57ba38b5
SHA1

3b4131000c645966206c2ef7e9136879299b0be2
SHA256

269815e5f629881598db3df204a6930c0c54da5a188562e7cacd04057074897e
SHA512

29ddd7f72c65dc67100d8792567014fa84924401c1d43e93e5e272707c346fc43965fb0827ecc399a08999a509dab6383ffc12e0297c5d0307c2fd9a6e2fa5a6
SSDEEP

1536:A/KbCJk+tf1E1iSjrbUiQCIjkhlIEVC+j:A/ICJk+110imUiuk1VHj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sourceforge_2895.exe

Files

Sourceforge_2895.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ