1d383954f952780e9b8583ce6cdeba157ffb5c9d6e72b2a0398c796dc934e993 | Triage

Sharing

General

Target

1d383954f952780e9b8583ce6cdeba157ffb5c9d6e72b2a0398c796dc934e993
Size

359KB
MD5

3df9e45b93caadc5a3589d673d9c029a
SHA1

fe3873e8ab20898efde00f8df6311757833b4033
SHA256

1d383954f952780e9b8583ce6cdeba157ffb5c9d6e72b2a0398c796dc934e993
SHA512

b7e242ccf7a2871adfc3934eae872a2460839640ab6c1fa1dd24153b78227dc38dcac98c88eb1aadc227f239e53a30add6d2b456b5ebf8fe76d20de5814e40a1
SSDEEP

6144:IIFSqxH6BQ0GCjgLysShWPpR+m/1D6n2:IIFSqxH6hjgLyxG1K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1d383954f952780e9b8583ce6cdeba157ffb5c9d6e72b2a0398c796dc934e993

Files

1d383954f952780e9b8583ce6cdeba157ffb5c9d6e72b2a0398c796dc934e993
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\OGATA_kazutsugu\Documents\業務\WACOMその他\PenCheck2信号レベルゼロ処理追加\MultiPenCheck_PC1v4220_PC2v4124\PenCheck2\obj\Release\PenCheck2.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ