OPL_Manager[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

OPL_Manager.exe
Size

3.8MB
MD5

2fed2ec2ac495e56e6061abd6851cedb
SHA1

c7c50be4d837b72938a87bc2663a5b185c59da2d
SHA256

494846a0557bdc123c59dbc37f19de3c31a76a14332a7a144e7ce95603438da4
SHA512

f2b8b0203d223b49b506a5cc0f07cb803afef0d94d13b17d9b081c72853d676518351a9f3f7c496f5430c08d9c08263cbdaecb7b3a8856e38f0cd724cf950b3e
SSDEEP

98304:2k5Ok0NKOk0N6Ok0NYpaPqoOk0NnnWmoQp3cEVnpOY2Jsk0N:l5tFLmmWm5cEB2J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
OPL_Manager.exe

Files

OPL_Manager.exe
.exe windows:4 windows x86 arch:x86

Password: 1234

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ