bd05d68efa6c899217bea745a2c9e2ae6fdfe7551e7f4ba18586775e0040fd50 | Triage

Sharing

General

Target

bd05d68efa6c899217bea745a2c9e2ae6fdfe7551e7f4ba18586775e0040fd50
Size

118KB
MD5

ef8ae6529fa9a347fe1d4fd5de64e871
SHA1

8ca07ac14d930cec45151ef720d8ba87b1c14fda
SHA256

bd05d68efa6c899217bea745a2c9e2ae6fdfe7551e7f4ba18586775e0040fd50
SHA512

b39ed6f24d78de833a6b01d7edb062277a5bc891e854e3f03c0a1474fe7cf23390efc7002b58b5c02e427f85319e52bfae1438ed9b897b88bb3bc1080e0a11c7
SSDEEP

1536:ZnifVRWDRUv8x0GW7ThJOAu0t3YUfXShJU5QUWp89LLl2CHStw/legwdyW5yBzK:d0jWDRaoy7Ot0t3Ymq25rL0sege79ie

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bd05d68efa6c899217bea745a2c9e2ae6fdfe7551e7f4ba18586775e0040fd50

Files

bd05d68efa6c899217bea745a2c9e2ae6fdfe7551e7f4ba18586775e0040fd50
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\o00wq1\obj\Release\NETCrypt.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ