39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292 | Triage

Sharing

General

Target

39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292
Size

744KB
MD5

6e094079b963390ca476d5735d8d2c21
SHA1

41b3089b77841f049d0c090fee62927c71d30326
SHA256

39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292
SHA512

2ef897019b77b6e302038e1e1b884aab1f95d7a19ef39924d55e18d3570468b209276ec342393e8250db7cd530e4778f26e4a1232eb4fc603bfda8587bb85ad6
SSDEEP

12288:Fd1JsJ6SOF1Sh2iNwzW+T9s3YK723POalXBv5uFZJvrsOucDxu5jfP93F/1PcEa6:Fdxw1GzW+Ty3323PN7v5+vgjH9VNEELo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292

Files

39ddee34e0fff6d1bd94e33e874b035b06f037e12eb7f1e9a4f9ea9baafdd292
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

PzxO.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 728KB - Virtual size: 727KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ