049a459f3c8308661f3b7595a42ab68c | Triage

Sharing

General

Target

049a459f3c8308661f3b7595a42ab68c
Size

12KB
MD5

049a459f3c8308661f3b7595a42ab68c
SHA1

8adc2459edb2811601b896f8bf36c7b8e6bf1b14
SHA256

b82b28eca12a039f09ced804699076d4946ed1d9170991eb17acf0b89520d831
SHA512

83f8fd6b381dab158f2fde2c9d50029847060ddbe7d8e09b3d26f401240d2c6cfee99a7a1205ebb23c2792e30d08dceb5886d7e8e959bd7277869eb17785d670
SSDEEP

192:l9DqvmED71qhXHjEyHEVTuGUfWrHmuyREWfwmiq1kO2HeL6TwIsKBO2Mfu95enE:l9qvmEx5+UFyRzWq1kO2nsKBOdfuHen

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
049a459f3c8308661f3b7595a42ab68c

Files

049a459f3c8308661f3b7595a42ab68c
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ