42dfb98099054eded85d238b0457e83f1fb12778b666d04b99bfcd5f8acbdbb5 | Triage

Sharing

General

Target

42dfb98099054eded85d238b0457e83f1fb12778b666d04b99bfcd5f8acbdbb5
Size

722KB
MD5

78fdcf70005aac75114e49ecc5bef6b4
SHA1

834a4c6e219ecd18113af9d1ac9467bd2165456a
SHA256

42dfb98099054eded85d238b0457e83f1fb12778b666d04b99bfcd5f8acbdbb5
SHA512

ba009225ded7db67ee45a4258b4ce9dbb18fa6995c814319169d5c62a8bee482f2e303f5545ec726aaeaae3984747d5f945d97479e01f23e27454a6914a797f3
SSDEEP

6144:VOy2RgE+ZXRJxVdzHTXkuSP3qw26GTXkuSPBTXkuSPBTXkuSPDbXkuSP:4bRgEGLdH4P3d/G4PB4PB4PDwP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
42dfb98099054eded85d238b0457e83f1fb12778b666d04b99bfcd5f8acbdbb5

Files

42dfb98099054eded85d238b0457e83f1fb12778b666d04b99bfcd5f8acbdbb5
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 613KB - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ