11a475cc39a154d9aaccca11f46a404833d18c54b0daaf832e5e244bc2be8087[.]exe | Triage

Sharing

General

Target

11a475cc39a154d9aaccca11f46a404833d18c54b0daaf832e5e244bc2be8087.exe
Size

15.0MB
MD5

b80012c497a22627a1bb9daa5b5e733b
SHA1

eee21c46a2c49cf4ca19602a4690bfeca3a38f90
SHA256

11a475cc39a154d9aaccca11f46a404833d18c54b0daaf832e5e244bc2be8087
SHA512

05269063271a66bf2cec12885bcaa2e0f758be7a27166d869114379eec1b521ad8224fc9ec9ecbec5d399c81342ca4779f58967083219a166c0a500688b1f5ea
SSDEEP

12288:POo3ciWZ25kSdr+abduEBq6LeP5U4IG2Q0um5apvAao+x472zebbLuax:ch2ndrf5q6L5bQ0n5aFA9+x4izsbLuS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11a475cc39a154d9aaccca11f46a404833d18c54b0daaf832e5e244bc2be8087.exe

Files

11a475cc39a154d9aaccca11f46a404833d18c54b0daaf832e5e244bc2be8087.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 9.1MB - Virtual size: 9.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 260KB - Virtual size: 700KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ