Видео - Ярлык[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Видео - Ярлык.exe
Size

21KB
MD5

7999f942ff7190cb7c9f0e04d6dc3d41
SHA1

66c3743d7a3d0885a624600abd71486c63a52904
SHA256

8c52ba6df441fea41e87285a7a79e790773407b4d377730b4f834b067d355776
SHA512

9ea2f9e0e81b69895023da6a5e6f4850bdfb0e37d847a6086afaa3debb928673276fa149b2e8df154f6b0498191e5e7ab29c22bc415a761038435abcc4607cee
SSDEEP

384:rknCoWESfT1upFgb1XYA1uokwqwADNeODVS/GbLjHulxcu9gbUW91i:0psYAJgtHulWWA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Видео - Ярлык.exe

Files

Видео - Ярлык.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

c:\users\guest\documents\visual studio 2015\Projects\msaccessdenied\msaccessdenied\obj\Debug\msaccessdenied.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ