118dc55dafc395d36e6432306816cedd | Triage

Sharing

General

Target

118dc55dafc395d36e6432306816cedd
Size

5.5MB
MD5

118dc55dafc395d36e6432306816cedd
SHA1

0d70395fe14f4653b4d2b1e04306996ca7668dc1
SHA256

c30fc9bfc313a2fd1fa09265e08e93d086cd889c1f5f7e79fa9fe1a3feaad5be
SHA512

56ad5aa5276a8f5ff16af42f4dd7d29a8b4570a23d6868e6e81b132d015923028fcee83accca8acb174d2db51a05554f2bad3b502ea3a32adc843f68add81f9e
SSDEEP

98304:7l2eH5MynQqSDbvnA3/i5Z16dsxKn4L2kb0TNszipheT9kVO4v80abDOhgx:7l2GzS3vnm/i5P6drn4rbZGphy9kVz+r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

118dc55dafc395d36e6432306816cedd

Files

118dc55dafc395d36e6432306816cedd
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ