test‮gpj[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

test‮gpj.exe
Size

15.3MB
MD5

3408f503bd25cdc19bb2d51012ba47bf
SHA1

4fb6467ae95764997f70dccec58062ef52f0e5d5
SHA256

92dbf178ff98bbd20e89e2d37b4f52b6be861f2e3fb08013341d5b24eddd4e6d
SHA512

5e73aeb7464fcc29cca91118708a1478cdb7662b2dac04848d8490496190a9118f4a3440c8b055b25195feb73e604aeb2243dd36307684f7729050961ee5b86c
SSDEEP

24576:jSgc9ROK0SLxerRcjJ8ocDuhK5gdTxQ2PxTDrh5LU42YEXaRZ5IzV0hk7QQp1zkd:G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
test‮gpj.exe

Files

test‮gpj.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 15.2MB - Virtual size: 15.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ