A[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

A.exe
Size

56KB
MD5

375bbab09f2b0d11b7e32025dc149496
SHA1

9bee66231845180e2020887cb0ba0347f07df83f
SHA256

5ba95db1130cb721805e0c15e63abd6990efb170f07d3425ca82bac269e3eeba
SHA512

0918d85c8a1ec77ea9215f69a59101c9b36e30d151bf6a1314d292579038280c5993fd4ad2b0138e052505a3bd487f49f182a9f460a511cf7d1fc820783d7648
SSDEEP

768:yY7QpbStl0H8Wbt1qShGLt0O04jwWYMjgAYw/KFzcOjupJ5yOV2EnE0xNvbH92:HCSUeSwhdXwXNwGz0Hx2EnfxNvg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
A.exe

Files

A.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ