ccf85c7ea9ef0236a22db178b60907c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccf85c7ea9ef0236a22db178b60907c3
Size

315KB
MD5

ccf85c7ea9ef0236a22db178b60907c3
SHA1

7d5b4e6726d39ae07c7ef057678ef96e80422abf
SHA256

906e49d7772808af1fb67511fd33b01c809079fddb77015425883ca9739cad33
SHA512

8f18a578bc6e4df7df4be59d676bee9ad2977e74c62ddbf85e6556b0dd052f6b8b192daf09b84b6b7050554fcb62e0cc62b4c1c7a0fc745ed14bc43db8664d8f
SSDEEP

3072:61kopoO0J5m3clNVoSewS7fRlDvggtJ6xYlcv9Wielt5WWD/3FMo+S8ovOGaxALr:4D0TbySeE8DAqk2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccf85c7ea9ef0236a22db178b60907c3

Files

ccf85c7ea9ef0236a22db178b60907c3
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

u:\develop\global\Release\obj\ADMigrator\ADMigrator.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rrsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE