bab239a2cb9755c9032763a81d658013 | Triage

Sharing

General

Target

bab239a2cb9755c9032763a81d658013
Size

50KB
MD5

bab239a2cb9755c9032763a81d658013
SHA1

31db863fb4a677d13dd2682ee0f29b45ef708303
SHA256

dd00bb08b3c6395444e40b1d711f19cdf3b7efd743a6df642a0998d92aa548e3
SHA512

ddf5b2096c5e088d0c3c6e7aaa7bcb7982060cc13bd03a07856cf945e0b07097633ff51cdef720d3decdbe1c4b052159fda2054c20c9a0f9c871d8781e1e052d
SSDEEP

768:7wBfgYwBfgPx1NYCqAWHWicmFn6lMD9K6:7wBfgYwBfgPLSCqbp9n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bab239a2cb9755c9032763a81d658013

Files

bab239a2cb9755c9032763a81d658013
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\Andrew Wallace\My Documents\Visual Studio 2008\Projects\Xat Hacker And Generator V1.0\Xat Hacker And Generator V1.0\obj\Release\Xat Hacker And Generator V1.0.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ