af87e492413a39ece684467ed23709084a993bdf8b3b8d86d9bff793faff9a8a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af87e492413a39ece684467ed23709084a993bdf8b3b8d86d9bff793faff9a8a
Size

1.1MB
MD5

3fdcd6a19f89c6ea78735c3b9bda6d81
SHA1

067977e07d788606ee36214e1529d5f715f29c0f
SHA256

af87e492413a39ece684467ed23709084a993bdf8b3b8d86d9bff793faff9a8a
SHA512

b4231f3336704325bcdda75aaf277b7e9dda52160f1405ddaa3f68d67bf06c20762ed50e7a154170cd76e79ff5e958910eab19d7c12ffc8c7919a00756ee9806
SSDEEP

24576:f9Ek0Npm075q0ypvm8oFIhBYAgRm8oFIhB:VfF09By18mB5K8mB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af87e492413a39ece684467ed23709084a993bdf8b3b8d86d9bff793faff9a8a

Files

af87e492413a39ece684467ed23709084a993bdf8b3b8d86d9bff793faff9a8a
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Administrator\Documents\Visual Studio 2015\Projects\LDPlayer 9\Overcooked2 Launcher\Overcooked2 Launcher\obj\Debug\Overcooked2 Launcher.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 695KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 403KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ