9a6ad3e54c8600f86b363a9be084f00b | Triage

Sharing

General

Target

9a6ad3e54c8600f86b363a9be084f00b
Size

27KB
MD5

9a6ad3e54c8600f86b363a9be084f00b
SHA1

ccd7688c435957f3d8cb5297d8dcf7009ce5725d
SHA256

e53edbf41b128beac9da2425de64be5701e76ce97a88ec34bbb637caa17e64fd
SHA512

e1149ea36f274be6bba2098c31908a288cc57e96b0915ca947719cdb81f0484b551f73e2b53f038386b6db8a5043c96379d60b88a6dc3ca192f8fb141801d7e1
SSDEEP

384:nfk8pWoEQ82SfQogLzWk3tRV2bi+np8aCX0Fey8Lk24jXPl6kda3XE0Kyr8xgQyE:sV7IRrlaMyhQ2XP1QOn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a6ad3e54c8600f86b363a9be084f00b

Files

9a6ad3e54c8600f86b363a9be084f00b
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Bubbles\AppData\Local\Temporary Projects\Injector [MPGH]\obj\x86\Debug\Injector [MPGH].pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ