1d66954a192b815bfaa0602d350e9caa | Triage

Sharing

General

Target

1d66954a192b815bfaa0602d350e9caa
Size

4.2MB
MD5

1d66954a192b815bfaa0602d350e9caa
SHA1

1fc454124bb32e5b3258d91b7571cdfef9b92cb7
SHA256

b2f9eaa097d3a3201bbe8884a10fab6acfb37c342552981b7daa276e07d4720d
SHA512

502184ae6b0d92d0123c4b3f345bf86049f62809a97043d9ce81fc55c6bad157c6e4953261c6a374ad9a3bc47ac73e1c0889f4e5f1392b6dd443cf9769b9d44a
SSDEEP

98304:mhFtXB4uluJRmMg6QWlIpgi0rHqsih/mCqZB4uluj:IvsJR0TW6yiIKRhzqtsj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1d66954a192b815bfaa0602d350e9caa

Files

1d66954a192b815bfaa0602d350e9caa
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ