chell[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

chell.exe
Size

32KB
MD5

2cd656e2b1493451535614ec9d04021b
SHA1

5b07b2f1bb7cf7a6d47f1ec10b935b4e73de7519
SHA256

ac2d538eaba8f6d06ea1263df2e0c5200a4d728819580086b7c7aea5e6598957
SHA512

ed90053058675185fad810fc6ddb54f513b718887742c70f094b2d12a1a12e2b077d22ff3b4e9d58e384a6483c3a9e978b7a61244eb41dba30c8c98ee15d3a5a
SSDEEP

768:DFwdzhL9wtTPrrwHH0w8gUw3ccrfLpVr:aiBjsnnZUw3cafFVr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
chell.exe

Files

chell.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ