tmp | Triage

Sharing

General

Target

tmp
Size

36KB
MD5

9988ecc60ca7190191200f1e67898134
SHA1

e2c5d12ce670053fa1d602d255ba798501d3467b
SHA256

9340cce72be40272dabb12f9d0a496e2ed0a3a179ce712e9b6db37756253a22b
SHA512

96ee41de0ff572f89c615e71d363c3c2975e65927868285f58eec264ff38fbaa0671ffc8c1e78e89e5dac6d46edecac464c016c3a5295a4dd5af92c8e6840eba
SSDEEP

384:X/JaYKNpS6XZQaD7U8iu4YsAa7ZA0UvH2lsRv21yW7GbAxur6+Y9PffPz:X/JaYKNkuQGPL4vzZq2o9W7GsxBbPr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tmp

Files

tmp
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\User\Mis documentos\Visual Studio 2005\Projects\App\App\obj\Release\App.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�h <�uk
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE