812f642077d6a621903fa236dd1391a068bcb95bd59b4d32c64bd22e92696699 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

812f642077d6a621903fa236dd1391a068bcb95bd59b4d32c64bd22e92696699
Size

9KB
MD5

6f93117fc66ea7dffeaa523f95f14205
SHA1

30f142862277419d94916f40f78ba30b3207889a
SHA256

812f642077d6a621903fa236dd1391a068bcb95bd59b4d32c64bd22e92696699
SHA512

18ce76ce53e78ee29f016b46b584a70d0703fe2de3b9e21269a058f49432a2bb385e647a530d4f0bfd4920c63ddea6b432f32e647f3ef9ffab7143ef5acf3d6a
SSDEEP

96:VsImToQJ2ZffXKEmEcMzM1VJj/xel7mZ0XLr7Ilndtxz4uRPYOLnYkfyuDnpePM1:FmTWffnzMedlbr7Ildtxz1PhrFFWsl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
812f642077d6a621903fa236dd1391a068bcb95bd59b4d32c64bd22e92696699

Files

812f642077d6a621903fa236dd1391a068bcb95bd59b4d32c64bd22e92696699
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\ogr\Desktop\20121123-Siniflar\20121123-Siniflar\obj\x86\Debug\20121123-Siniflar.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ