accc16d44abd9a8fe6c16afd620fdda9ecec49b8b603f43e6395345d21ab3901 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

accc16d44abd9a8fe6c16afd620fdda9ecec49b8b603f43e6395345d21ab3901
Size

23KB
MD5

63642fd69f3dcea1607e5bac702ac555
SHA1

a8c6b5b2197c849e068916e10cfdcf89de116657
SHA256

accc16d44abd9a8fe6c16afd620fdda9ecec49b8b603f43e6395345d21ab3901
SHA512

68f17c3a466c69087cd7253432813dabebd41cecb71b26cd0498689554ffce6e25074c313180b58e81a3390518ef2c98ceaaa51248c8beeeb820b085ce777df4
SSDEEP

384:/1kWEavnH9hNIRYFJCvbvxpFaaOL0shDQ3sXOHtlJ46wfcmd:eWEgn5ZmQaSUNX4Zfh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
accc16d44abd9a8fe6c16afd620fdda9ecec49b8b603f43e6395345d21ab3901

Files

accc16d44abd9a8fe6c16afd620fdda9ecec49b8b603f43e6395345d21ab3901
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\Net\Common\Src\Setup\CrGacUtil\obj\Release\CrGacUtil.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ