541409f4b240d207f26645017941edbb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

541409f4b240d207f26645017941edbb
Size

546KB
MD5

541409f4b240d207f26645017941edbb
SHA1

f7f5a00257d9db5cfa39e97ba3f8d775b3bf1710
SHA256

88d4e7f924951d16664cb0800c3fb7cc13170a500e4bafedde560997694b4a62
SHA512

68e0e3afc944ee62e2e3734c35dee6d7e845dad7d50a8c9dd3865737f72bbb1327d02084481660fd7059647cb659d92be89f34edfb827ba9c074f4fe3dedb375
SSDEEP

6144:v/+BwkTUG/Gv1pxc95Gv1pxc95Gv1pxc9LGv1pxc9pGv1pxc9sGv1pxc9:Kp0y950y950y9L0y9p0y9s0y9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
541409f4b240d207f26645017941edbb

Files

541409f4b240d207f26645017941edbb
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 478KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ