c130f5eda034cc7d58e8d4b6c723ab693d9345b0868721492a9d005241f85d75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c130f5eda034cc7d58e8d4b6c723ab693d9345b0868721492a9d005241f85d75
Size

109KB
MD5

6937de2019e584f48d4371c870a7e39f
SHA1

d4aeafca82b3e43209a75378172cb49732c2c789
SHA256

c130f5eda034cc7d58e8d4b6c723ab693d9345b0868721492a9d005241f85d75
SHA512

99e5725c647284314fdf55922ff4ee55e07a7101c61f1d1734e21b53c929d88b1c6a1c171090d3c84dc39933dd885e3268ce1a34ec47570c13f88e1452cc1711
SSDEEP

1536:LYogSlNwXosKwOYtV1AS9m3xQyVGNNiLkWNF7Xx6qmyVttdGFQeOPig7:LvgSlqGS9m3xQyKNbWNVUqmyBeI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c130f5eda034cc7d58e8d4b6c723ab693d9345b0868721492a9d005241f85d75

Files

c130f5eda034cc7d58e8d4b6c723ab693d9345b0868721492a9d005241f85d75
.exe windows:4 windows x64 arch:x64

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ