TS-240306-UF4[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TS-240306-UF4.exe
Size

6KB
MD5

5bdb9121aa39ef0663fdfad503f9b281
SHA1

27619dce3555b7f257aa67189add994eaaf31a54
SHA256

67d1791685af313fb986b70c00df6526cd7032f6883ff6b54fe25ff15598d541
SHA512

8f9b9771fed06ba6714843d29a1e383e72f79fa761d05c8a81e4a3bc8300a40c3b0e6d602f917fb449521f4243e49149415e012ce8c253d76d6730f9a2f66e41
SSDEEP

96:1G9QmAaua0aOGPwJFxzw8j3KXaId5Yqz89u5MiRvwdUw2F2lFbMiRvwdUw2F2lF:1MZwJFhw8j3K9zcuWipwCOAipwCO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
TS-240306-UF4.exe

Files

TS-240306-UF4.exe
.exe windows:4 windows x86 arch:x86

5bf1c7218e35ec519ec9026542bb117d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

OutputDebugStringA
GetTickCount
VirtualAlloc

ntdll

strlen
memset

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 512B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE