ad927acd2eed71acec89f99d1bdf4d7b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad927acd2eed71acec89f99d1bdf4d7b
Size

12.1MB
MD5

ad927acd2eed71acec89f99d1bdf4d7b
SHA1

9322a564336d61e064b5f816beaf3b5419de0423
SHA256

71b4ca16159a9f2ee377d0d8ad6ff053c2d002fd5784181b5038e0082b217928
SHA512

24ef82c5b419d86405428b67ff728f3842d477cdea501fedbfce8e5542bbcd03310a9a944b8dcf786c29b1f8c23aba9c6e59d3989e3f1736bc985d8bbf8b2ed9
SSDEEP

3072:1UsTSjO/LyOu8E3U8frAt8QZtEzByOv0PVYkrkIwgTWn+nkI+d9qli:prE3HrAtFt4+F17

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad927acd2eed71acec89f99d1bdf4d7b

Files

ad927acd2eed71acec89f99d1bdf4d7b
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Admin\Мои документы\Visual Studio 2008\Projects\MuHack1\MuHack1\obj\Release\MuHack.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11.9MB - Virtual size: 11.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ