1f4a87774ff059d50e94a3b14ff675c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f4a87774ff059d50e94a3b14ff675c5
Size

66KB
MD5

1f4a87774ff059d50e94a3b14ff675c5
SHA1

690ea5eb313fb5244405bd8d072c09f0ea5fafe9
SHA256

8b4602605071a8cbb25f98dbac331856b10fe1ebc94bd2480e71fd2d97c87764
SHA512

894715174ef06d797564d9ad330b6a0db2a72fff664a54bd0f3343ef397d142d1240f4a9c181f676411955a4a3d4522ab3357f86a76a915908b464b0d2507c95
SSDEEP

768:3ayChJik6jiek6CSepOSwOftGvI1yY4bstCcO9BIciRYP1H3PxJk2oQBDrCZ7Bo:zChSjip6CSUOSwKtT1O9FJ95rs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f4a87774ff059d50e94a3b14ff675c5

Files

1f4a87774ff059d50e94a3b14ff675c5
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

tSp\R
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ