0ca0febadb1024b0a8961f21edbf3f6df731ca4dd82702de3793e757687aefbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ca0febadb1024b0a8961f21edbf3f6df731ca4dd82702de3793e757687aefbc
Size

30KB
MD5

158c129d63f414880f232cc02654a6bc
SHA1

c225e0b256edb9a2ea919bacc62f29319de6cb11
SHA256

0ca0febadb1024b0a8961f21edbf3f6df731ca4dd82702de3793e757687aefbc
SHA512

6c516702583945f5ead967cf58a9756f4b3dba0e00fea33ce70c9030350033cf16b9d316b0faa8b994a6ac0fc36d986c37f0f8a09789e17e7fd0ce6e488f79c6
SSDEEP

768:2fb8LxrSnjq/bm/dDb9+8EIGhFr0RKACng:2f4LxrqjsODb9zxIr08fg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ca0febadb1024b0a8961f21edbf3f6df731ca4dd82702de3793e757687aefbc

Files

0ca0febadb1024b0a8961f21edbf3f6df731ca4dd82702de3793e757687aefbc
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\MyProjects\All\ExB\ExB\ExB\obj\x64\Release\mscom.pdb

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ