tmp | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

10KB
MD5

b822ed225d513049eac073c5baf8d262
SHA1

1b765b69796a29cdaa3f03991f75f47174b99d16
SHA256

e9e276e6f2b348d1131f493283ea67723aac8f463299e02240fce2684ed53663
SHA512

15a0c7080ccd75f2b03e3d3526c2c5b3207274d37ba9c2b5d2ed6926a2d7737b2581dc229a8076f92bdda579b583de1fef53899bfca54b8e0fa5516f6da78a5a
SSDEEP

192:ZSHCTpvNQ98cANQ5bbfVE0In64vJjI+VfxNl9:OC12rEQ5bfe0I6D+VZNl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ