d4c2c14294db02c80e724e3c714cde03 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4c2c14294db02c80e724e3c714cde03
Size

59KB
MD5

d4c2c14294db02c80e724e3c714cde03
SHA1

a53136b86e3deef007260c6d72aba518f062d329
SHA256

86105e28a178f0159cbc30f5c6e0509b1f97f46c8407ea5c0fa987f8cd8dad2b
SHA512

e57ca2e3223c990eb0f9072a8bfdbedd63dade3438c6414580dfb733ca169a9bd484c5a6e41234d801b4a6ce0a66a90d875b0b00bf688e4da57c6950eecfbc47
SSDEEP

1536:LhvxeYjNlrb94b9mDlD1wwVSz3miCIED4k1Hw:dvxB9g9mYz3miCIE5K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4c2c14294db02c80e724e3c714cde03

Files

d4c2c14294db02c80e724e3c714cde03
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Zac\Documents\No Strings Attached\ZeroTouchUI\obj\x86\Release\ZeroTouchUI.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ