89abb2cf07c2a32e42ddd28da258320c | Triage

Sharing

General

Target

89abb2cf07c2a32e42ddd28da258320c
Size

184KB
MD5

89abb2cf07c2a32e42ddd28da258320c
SHA1

fc9f665d54c4984421f5cc82d36d2718c321ff9c
SHA256

84da8530946dcedd06f1e66bdace4d698c5eb0d9dc6838fdfc4b5cdf95d08e71
SHA512

640aca22bc31ac69225269ac6f629e242c31e220e03cce4d9fdbcbb798bb666ea622d23a54ffefda0f97730ef177d13470d6a2ce5ccb55fc88f7f841e27f9062
SSDEEP

3072:FkQrCfOj3W2s8EIYD76K48V9XXTqvb8yWaUYnzD1Sc6i+6rc9:GQOqPs8jYD19YdXVnNJhhrw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89abb2cf07c2a32e42ddd28da258320c

Files

89abb2cf07c2a32e42ddd28da258320c
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Surse\N0$crypter_AeonHack\No Admin\wmpnetvk\wmpnetvk\obj\x86\Release\wmpnetvk.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ