abf0150e24ee2bb8ce9ae1e37bf02e88ffd32792e763b64167bb7e3c7f218832 | Triage

Sharing

General

Target

abf0150e24ee2bb8ce9ae1e37bf02e88ffd32792e763b64167bb7e3c7f218832
Size

15KB
MD5

60e1ecc53db5a5cf58a5e6477c7eaf71
SHA1

fca28e1db36972b593fc75eda58b2303d93a593f
SHA256

abf0150e24ee2bb8ce9ae1e37bf02e88ffd32792e763b64167bb7e3c7f218832
SHA512

e7b8faad12d8b9f598fbe57f2986dfd38533e54c7a797bb0e80b379d92b772cf279d50b9315613e9a5c46a502d101406c32f6045cfc1ddc1d631e0250212cbd4
SSDEEP

192:LXao+tHEC41D8e3P6ktDOp+4FmIWfM4Wl:NGkZtNtDcPvWfM4W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
abf0150e24ee2bb8ce9ae1e37bf02e88ffd32792e763b64167bb7e3c7f218832

Files

abf0150e24ee2bb8ce9ae1e37bf02e88ffd32792e763b64167bb7e3c7f218832
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ