6faba8720e5d770cb4cb866b3e042b7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6faba8720e5d770cb4cb866b3e042b7c
Size

754KB
MD5

6faba8720e5d770cb4cb866b3e042b7c
SHA1

85cb9afd57d3ac3322f841871d7da3d134312090
SHA256

6f4b8fa54ae569a8a75f8f9ac0b390a8d9f7e0c0ef6552a1d1661a5cdeca17c1
SHA512

f49c8f04c1e70b9cb8763300bb2a890753f2a3cebc9741d7adde6d4580915d7ada415fbb9d64a76f9b3e21ee73ef1d7f0f4bc8167cf0848f7b509a796a44e4a2
SSDEEP

6144:0Gt3WXgVVVreVVVVkuVVV0VVgEHVtVVuHBVgkLVC93kGuHV7HVHsHHWHHvlFKMUw:0mGYxvFfY1EIxMdtsPgTW2s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6faba8720e5d770cb4cb866b3e042b7c

Files

6faba8720e5d770cb4cb866b3e042b7c
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 555KB - Virtual size: 554KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 198KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ