aa909b92dbd899b3137ccdff2ed004bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa909b92dbd899b3137ccdff2ed004bd
Size

179KB
MD5

aa909b92dbd899b3137ccdff2ed004bd
SHA1

02d7aee29a69ea834f0659358040a21b08e5fb42
SHA256

1fd7c324e81851fd640ee53f7436d176c1dee645bb2f24ac96a4c9ca89dc6fbb
SHA512

d8936a88ca838475d880a5d4acf1f33357b9cbb72bc81b8f80b9a4b6e4777f33541aca4a1f138d740e589afbddd70378de0020eeb4e21b88e60371aa7e109102
SSDEEP

3072:aoZrJTW2c2pE5ZufIJiiKGLHwsXlchjcI0wHFAp1pXcIjlc7prYu9DBWTDN:awJTdcl5ZukKGLQ4chjchwHF61hcIpco

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa909b92dbd899b3137ccdff2ed004bd

Files

aa909b92dbd899b3137ccdff2ed004bd
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Documents and Settings\Boss\My Documents\Visual Studio 2005\Projects\NM3\NM3\Release\NM.pdb

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zwt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE