200cf2aaf74d98dd083e97c4f85677252624c4afb357693141300530ef78e073 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

200cf2aaf74d98dd083e97c4f85677252624c4afb357693141300530ef78e073
Size

515KB
MD5

09bdeaf94d8a49ec16b1f50d3ba3fcc7
SHA1

977b45f02a2b3b03ab6eb836ac66d810cac7ceab
SHA256

200cf2aaf74d98dd083e97c4f85677252624c4afb357693141300530ef78e073
SHA512

3d0947c1a0ec50f2b11451e98f5812bc408071cb14b90778a601b6c68bb0abffb1cc27649a8d4208d848a4ed3724705b98001c8ce69b0687214601985da7adfb
SSDEEP

12288:RP9+fIe+CXzZZo/EYx2VqXUx4ruPAQcWTfkUL0vXpy6EyQrT5Cu:R1+FBjYNx4qXUx4ruPAQcWTfkUL0vXpS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
200cf2aaf74d98dd083e97c4f85677252624c4afb357693141300530ef78e073

Files

200cf2aaf74d98dd083e97c4f85677252624c4afb357693141300530ef78e073
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\dev\MyProjects\gitgud\Release\45\CozyGit.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 475KB - Virtual size: 475KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ