48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf | Triage

Sharing

General

Target

48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf
Size

676KB
MD5

abb70dd8e01b89abb8c249de5282023b
SHA1

2fcca1ff3c2c6f110f4db2cf9893025c2521821c
SHA256

48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf
SHA512

e1ad0dc5a87999a2e24ff085bce114ada642bc0c933a4e89cf1a64caabe1d5c447c59048c89f5aee0cba95c4c57453b8c7e0a91084c6d09e9ef9f406cda27e6d
SSDEEP

12288:eCj/JJIx5SiV5d4cSFdH7ZDNsed4ydZNGgwhm/biEuTaoDDryg:f/Js5SIdSFdbhNFNBwhksLDDWg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf

Files

48dd86811e1f1141a201935380a3f2319c4100098ac654465c755ded168beedf
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 664KB - Virtual size: 663KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ