Software[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Software.exe
Size

316KB
MD5

713cfe23534e6c40465aab09fd8944c2
SHA1

ac6279232671997e5e5712d5dad72a416a33b738
SHA256

3d998e4bf0b9fc967d182ece4ba6a50acdf34c65072b2bbc31e8403ff10447dd
SHA512

adfc48fc87b1b7e7f9edf15aff59b7383fdf1790d0502ca4e0c4dcc9009efa048d8ee901a652a129efac60caea69a857d2fff71f04ad8648cb97a24e78aeb49b
SSDEEP

3072:LlEhRgHdf8ufVsxqWuFAGW5RdWvHjBA3qjoxzkwHMvQKth/:LloRGRfV4XCG/dGHjBH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Software.exe

Files

Software.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ