28b2294a5b85c8f3357299437c648501 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28b2294a5b85c8f3357299437c648501
Size

111KB
MD5

28b2294a5b85c8f3357299437c648501
SHA1

4630e9dd3b4f4c797f2ef938fa49e044f926fc5a
SHA256

9fcb14fc3df8cd343d9f80d58c1f97be6375add9b44e3410e5f57f3f94095045
SHA512

a6751f73422c21c3be532192b1ec4943d404a9036d2f8df2dc59042246c503f6dda669dfaa7b09804945645a2108358bbef029ad32c8dfe00a1eb53868d18b56
SSDEEP

3072:SKT3I7YBXQomkgK87KoznD/K7IpW3X9RzvLtZiAD6r:Sy3TBgomk87Jnu7IpWdRzvxk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28b2294a5b85c8f3357299437c648501

Files

28b2294a5b85c8f3357299437c648501
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ