6607d552accc951f2cd068bb394200987d7d1e90e34f8cdab3afe6e3ccedee4e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6607d552accc951f2cd068bb394200987d7d1e90e34f8cdab3afe6e3ccedee4e
Size

3.1MB
MD5

f3e70f68d7e2f644bcd312f1333094e1
SHA1

259dd00ddb8a08fb149c37254bfb865a74bb11b9
SHA256

6607d552accc951f2cd068bb394200987d7d1e90e34f8cdab3afe6e3ccedee4e
SHA512

425d60775735804dce4a43aba0426966cc21ef5c0c997d073bc3d0740d3a07b13227fd1e5be93189079e8e01ca0c515d27ddc0451ee4e514e02bdc3bd8f4d33d
SSDEEP

98304:JmZqA+iL8qKL6O30JpMQEXUNa+6wBil8Ze:Jva8tLlIEEUzyZe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6607d552accc951f2cd068bb394200987d7d1e90e34f8cdab3afe6e3ccedee4e

Files

6607d552accc951f2cd068bb394200987d7d1e90e34f8cdab3afe6e3ccedee4e
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Windows\Containers\Confidential\DotnetGenerator\Stub\Projects\Fallkyriya\obj\Release\Fallkyriya.pdb

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ