09bca75be0a40db0cc62836863c04c78ab96f3b6f7e509fb3744197e0d7200d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09bca75be0a40db0cc62836863c04c78ab96f3b6f7e509fb3744197e0d7200d2
Size

629KB
MD5

2a74ece0516db99580271495efaa97d0
SHA1

bcfc4866a2091dd044fa5f2d65fb0e9cb7e37a0a
SHA256

09bca75be0a40db0cc62836863c04c78ab96f3b6f7e509fb3744197e0d7200d2
SHA512

8a4d4f20fc192f2c1a4b8974f6801c537c8e86d73382ad051109de059077e7700fccf71d298ff85eb70b73007013f1bbc78d523fc1fc9ff3192a5ab68d078792
SSDEEP

12288:EVzVsCVhaTILza07Z7NPZqyRNFB1P8yJ2MAg:EFKCxL2YNPZ1FBpsMA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09bca75be0a40db0cc62836863c04c78ab96f3b6f7e509fb3744197e0d7200d2

Files

09bca75be0a40db0cc62836863c04c78ab96f3b6f7e509fb3744197e0d7200d2
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Windows\Containers\Confidential\DotnetGenerator\Stub\Projects\CoffeeToYaraAndJoeSandbox\obj\Release\CoffeeToYaraAndJoeSandbox.pdb

Sections

.text
Size: 627KB - Virtual size: 626KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ