SOLO272[.]exe | Triage

Sharing

General

Target

SOLO272.exe
Size

1.4MB
MD5

2959def4ab6d49559c9155f3fa03127d
SHA1

015d8993db9e70632c3a4b5ac086cf39490e770c
SHA256

33e10523e74250f3189e43e414acee1e6c3f04c30c36bc577d4a0bdda7399d34
SHA512

d4d8c510305fa8dab849f5dfd3694208e9621c6b30a2747e1643a5fe36567b18a155a90e47fc54e61f5e39232dbf799e587355f0a6d885dfb18e50422b682263
SSDEEP

24576:S06iPGi99dWQvW++Z4FOdc5iK1oTMAIz5LZWjDP9eXwE9gki8I5N0:S06k8jZ40dU1oYAI9L8XYwE9gMI5N0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SOLO272.exe

Files

SOLO272.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE