okaad-hello_world[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

okaad-hello_world.exe
Size

419KB
MD5

04113b3c204dd4d4aa4f77277cda7d5a
SHA1

94e0e31eb193104f02161351aaf30a344bddce96
SHA256

e67c8f824bbbd82f7ac7f95009aa3f1c5e703873a4911848eb1d95450ecad7dd
SHA512

624c5b452e30cfca58f2fce00d371321a3ed665898478e6a94d0de6c5f9863de314680c99db4fe0189fbe439397d414a768fb1680556b3d2e0da680279b5e032
SSDEEP

3072:6Jy1cGYyNfuysRVUWg/9KJEdCuieko/2wDtTQQJ/:641cGYytGVUWg/+EdozbEd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
okaad-hello_world.exe

Files

okaad-hello_world.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ