49e4f789ff7538baf08d47c35348f138 | Triage

Sharing

General

Target

49e4f789ff7538baf08d47c35348f138
Size

192KB
MD5

49e4f789ff7538baf08d47c35348f138
SHA1

35a3f89c370b356896371c58435a880af25eb7c4
SHA256

e7ddfd0ee2a6ade27926f55e8dcfea79c45504a7528216aee9fd8d33347f9dcf
SHA512

5f75126f1c8a9d6c1198a8d43b48e711aa47db543b07a1a009fc3e36e56b8dbfaba4ff5ae25042580b5ee8a2bbce937a4668fb7109c1713ac126cee83f356e49
SSDEEP

3072:aBzICFXzr6DL1geQcVvRMcppZ3C+Dqd4B/wFj2wCai:ED6DLvQcVJvpEZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49e4f789ff7538baf08d47c35348f138

Files

49e4f789ff7538baf08d47c35348f138
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ