66bdca796a255f635a7b18f1b8b0b632 | Triage

Sharing

General

Target

66bdca796a255f635a7b18f1b8b0b632
Size

11.3MB
MD5

66bdca796a255f635a7b18f1b8b0b632
SHA1

71a68b9e1736a1653f62a128fa131aff9557f3db
SHA256

a1db4177e3d50e6a9b31a0464659b1b73632f4557be62114bd6c9f4455076709
SHA512

e8231be2cdcf417f299e07a4e52f746c460b3245e2a50493dbad8832a1d4345120523d96789b4ee87547e14b53926f9f4a23086d8a43d31190004a94a64a8a02
SSDEEP

196608:oEAPle9sM3l0v1AuaFSD3mS80qwCtYh5wZjzEl4Ws8/XMeGh:oNPgiMNfFSD2OvCtYh58KcP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66bdca796a255f635a7b18f1b8b0b632

Files

66bdca796a255f635a7b18f1b8b0b632
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10.2MB - Virtual size: 10.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ