1e41f54f9f365b26a9c5bed68183c654 | Triage

Sharing

General

Target

1e41f54f9f365b26a9c5bed68183c654
Size

2.2MB
MD5

1e41f54f9f365b26a9c5bed68183c654
SHA1

d5ee8c7196b01a4cc1030d176e0d7062c4927326
SHA256

8d86e15dd95c6b3da4a507b53168db273834f92a0811bd87b5dc59998dd6b96f
SHA512

afa01fbc35e7be41bf86da68fecd392fcd4bbbeb8c887d9de56eb8107f1d66fd383383befd0cbc6957d1207c08f52c566f36a918ff6c21d5a68e95bf185dd8d0
SSDEEP

49152:ekqHrv0SQTPauUnlcAV+4YtsoIVz2T47O/1ckgjvGmazYtAMD6fF:ekyvvRKALYtsvu47o1ckSt17D+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e41f54f9f365b26a9c5bed68183c654

Files

1e41f54f9f365b26a9c5bed68183c654
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

|j^2@:
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ