954f61b8d630e9333f8ea09a752c95e4505e4a9b964d872fdc7d57bb811e27b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

954f61b8d630e9333f8ea09a752c95e4505e4a9b964d872fdc7d57bb811e27b1
Size

353KB
MD5

968c43f3600f24e1cc64f6f8a7c2e7d4
SHA1

8451735f0d12c6c6e9c4e6b88f4e15b9d509bd6a
SHA256

954f61b8d630e9333f8ea09a752c95e4505e4a9b964d872fdc7d57bb811e27b1
SHA512

87496bff6d2d56782d4f9291b1ff343f2f3ce308a94cc8db793f10ca267521e852b78cf797c6114ab28e7d29738ade22c8820c8ed66b7f14180a947b3215836d
SSDEEP

6144:3od9YpQfbHS+A2VVAQU0VVVVVVpMVVVVlVZVVVVuVeVVAjOlA2VVAQU0VVVVVVpa:JdGO3Orl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
954f61b8d630e9333f8ea09a752c95e4505e4a9b964d872fdc7d57bb811e27b1

Files

954f61b8d630e9333f8ea09a752c95e4505e4a9b964d872fdc7d57bb811e27b1
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Sergio\Projects\AR\astral-report\Core\mercuryTray\obj\Debug\mercuryTray.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 253KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ