d72b41a191926747f220683425c88884 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d72b41a191926747f220683425c88884
Size

38KB
MD5

d72b41a191926747f220683425c88884
SHA1

8412e6a6743969cc06318dac79fe372241c1c306
SHA256

942cc7f3dcf1e456077aacd9a5f496e7aeacbdf87b4c19fe1823e2831d6e4b54
SHA512

564d330d0c031c414a2764ea3f73a2c59d2626786f48cac9c12739ddb6af61fd548990fe68307a357101321050e4981698e5af622981e66f566efc367f51926d
SSDEEP

768:mBfRRtPn2u7vc//1AqQsBfRRtPn2u7vc//1AqQ5:cVPn2uj0kyVPn2uj0k5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d72b41a191926747f220683425c88884

Files

d72b41a191926747f220683425c88884
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Zak\Documents\Visual Studio 2008\Projects\stub\stub\obj\Release\stub.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ