aa05091b31d84caee32cc251129f6d0e401f0e823a2f08b11ad887258e156dd6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa05091b31d84caee32cc251129f6d0e401f0e823a2f08b11ad887258e156dd6
Size

310KB
MD5

00681a0952a6ef3ce6af2741e62db3c3
SHA1

089e400184e86ab57beb2b11ac72e62cc5ac77b7
SHA256

aa05091b31d84caee32cc251129f6d0e401f0e823a2f08b11ad887258e156dd6
SHA512

bcae1012974cefa87ede9687db0125cd00cdab6f41dc5249a0d574e483b746061c590dfd43a1042da81ba88c22002a9469c6ecb5aee360bd35c7230787d5696e
SSDEEP

3072:4R3fOcmz9rAFOZRHQrA+7PSF2WV4xPkPc03gCsu33k6ngipLVSZ1YdyYKxHe4wNo:qfOcmhQ8+76F7V4xPEcD3GU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa05091b31d84caee32cc251129f6d0e401f0e823a2f08b11ad887258e156dd6

Files

aa05091b31d84caee32cc251129f6d0e401f0e823a2f08b11ad887258e156dd6
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

t:\p2015_5_0\FSP\CSharp\AlterAct\AlterAct\obj\x86\Debug\AlterAct.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 306KB - Virtual size: 305KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ