9fee09184fd891e9b8136a907f1acc66 | Triage

Sharing

General

Target

9fee09184fd891e9b8136a907f1acc66
Size

377KB
MD5

9fee09184fd891e9b8136a907f1acc66
SHA1

b12be9a6b738b143a39c9d3a6845d134da4be8ef
SHA256

7493d3ad2cb9115d697430daf93325e997ea5c5b7b93a5d4211cbecc56ba05f6
SHA512

3478f2e4706b56d6cdcb6a30a948929f4de992b42f7c4cc52d9507813c20d36b4c68f37bea03fa6af3ec7f294b70c559db535d9ba06d8886bee49f959bdfa6f6
SSDEEP

6144:HYOoJF9GkEqA8qYFqkIeODYa/UBT5GtPdfaDOh5YvAHlqyK2uZ4EChV7ZowDDO29:vkq8qYF6DY46GtiaSowyK2tKj23t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fee09184fd891e9b8136a907f1acc66

Files

9fee09184fd891e9b8136a907f1acc66
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\users\nemesis\documents\visual studio 2010\Projects\WindowsFormsApplication3\WindowsFormsApplication3\obj\x86\Debug\WindowsFormsApplication3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 374KB - Virtual size: 373KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ