73ed1d0763d00046dbb66b5d067711bf | Triage

Sharing

General

Target

73ed1d0763d00046dbb66b5d067711bf
Size

431KB
MD5

73ed1d0763d00046dbb66b5d067711bf
SHA1

eeb45adb3093b73a967b0ef75c226c81988c2765
SHA256

feb73c77207bfbced59a52ff4f43ad03b712c53cbdffe479c6c4d9d56e1ed267
SHA512

5b3ca9af32626efdefca3175c8dc824546c0b0e0bc49f96379abac97df9835eb80101cec3eef51127a95db56f384a3252fc8e3962759d33f3bff7e11441a8c29
SSDEEP

12288:eVo6kqZtYjBG5VrSAPYjIuwODCPaQ6OHo3+A:+6QtYY5UWYjIuwO4A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/lono.exe

Files

73ed1d0763d00046dbb66b5d067711bf
.rar
lono.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 957KB - Virtual size: 956KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ