99b3cbb2428cd30c6e9a03e8f27df98b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99b3cbb2428cd30c6e9a03e8f27df98b
Size

512KB
MD5

99b3cbb2428cd30c6e9a03e8f27df98b
SHA1

b884b69e6c5f18315ac3bf066a57bba37309078f
SHA256

4f73953acf1a5b8d9c414bfcf68f6a708903131be82f7d0cb5ad4a9fcb082dcb
SHA512

d67112b2e2b2f808feeac9dd92ea94093203f0e15f329fa976fec8e702ffd70a3d28bd546627c9e4f720f27672866413665f1efbe709e1c30c890f5ad92ae023
SSDEEP

12288:FRCUlZIGAHOS+bAQWV5unMbgFhWP0niFXQt:FEUpAHOS+bHni4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99b3cbb2428cd30c6e9a03e8f27df98b

Files

99b3cbb2428cd30c6e9a03e8f27df98b
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.wibu
Size: 504KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ