aa95daf2e6b6d0166ab1f64940345a14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa95daf2e6b6d0166ab1f64940345a14
Size

67KB
MD5

aa95daf2e6b6d0166ab1f64940345a14
SHA1

4846a88c0b0d6d0b505e2937fef897870233cac9
SHA256

0de1cff15072ad0bd6fc4de79c808dbe8ef63d71dd5bf01446f498cc0585c7e1
SHA512

a6d6da7b482bc46f4f3cf3d2782719f3159c50a3cfe8e9bef16f4c730e031565f85802222750a576ef763e7c753e2de421d7422774a99456eedf8bd77ebeed0c
SSDEEP

1536:hbPdRrA5wGRSfFL30ZUTo2LTzAHU8vlluy+leW9oNppK7wki:hbPdRrApRSft3SgCvXL+B9+pUwki

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa95daf2e6b6d0166ab1f64940345a14

Files

aa95daf2e6b6d0166ab1f64940345a14
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Mirko\Desktop\INFINITY SOURCE\v3!\Stub\fil1x132\obj\Release\LFTM!M@#1@#12#123.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 143B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ