49e7cff4f0aab9188b32b97fa1c05a06 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49e7cff4f0aab9188b32b97fa1c05a06
Size

1.3MB
MD5

49e7cff4f0aab9188b32b97fa1c05a06
SHA1

7f6476d1bf0339b37d11ffcff1d2055a417a49d3
SHA256

76f7e6b674fc53ca5a481301a375d60c137c86884e0733a3f66e39cb5a54d530
SHA512

e76b7039f2be39226a8f75d4461c5d5a999f052ee3f78fff51bedcce29278d327fd4ce51d158d38627d8a938b18539bbc7a329e235a1fb464e90eb45da450e0c
SSDEEP

24576:3c8iHNFpmJJNK/Ry5D96H0vbHQy5Sk2dc8iHNFpmJJNK/Ry5D96H0N:3c8MNF8JJ8y5EH692dc8MNF8JJ8y5EHg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49e7cff4f0aab9188b32b97fa1c05a06

Files

49e7cff4f0aab9188b32b97fa1c05a06
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ