745860993ec9e0a5ee7e5b7f3874fec8fd440ca7a4ca3feb3bca6bd0787dc259 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

745860993ec9e0a5ee7e5b7f3874fec8fd440ca7a4ca3feb3bca6bd0787dc259
Size

132KB
MD5

d8a67733efa9d975454793edaa24289b
SHA1

aa41d59a3804a3158e51dfcc1f1975e0f09fede3
SHA256

745860993ec9e0a5ee7e5b7f3874fec8fd440ca7a4ca3feb3bca6bd0787dc259
SHA512

3bc4ef8700722d07af03a44902f07598891f61144920b20156915b44bb1de761f90052138b02406519ea5d7df8c635d14347245fc72fe42c46770a3b806c21e0
SSDEEP

3072:SSpjqAAExpOA59cXx68Cy/BiKprxmxrLy/chfD93ftPPVGJsG6a:9rpOA5MIgBiKprxmx/y/cDBPSf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
745860993ec9e0a5ee7e5b7f3874fec8fd440ca7a4ca3feb3bca6bd0787dc259

Files

745860993ec9e0a5ee7e5b7f3874fec8fd440ca7a4ca3feb3bca6bd0787dc259
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

XamlViewer_v0300.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ