290027325d5052f6e7e0371335521b1164c0469263b06eded593f81feedd4e69 | Triage

Sharing

General

Target

290027325d5052f6e7e0371335521b1164c0469263b06eded593f81feedd4e69
Size

712KB
MD5

61da50dd16597791cd9fe63cb114f50b
SHA1

a6ef3bd0db7f2e0866fa265176569647804c606f
SHA256

290027325d5052f6e7e0371335521b1164c0469263b06eded593f81feedd4e69
SHA512

ce1704c7116f9fdf3e07e136df697b53a9e521ce1f8e6fcb839749e147fc191a34782f50d9e5534cd5b51cbb875a86b94c0e4a3b8751f0b8cfe1b2f55bf38767
SSDEEP

12288:pkXiAEfDrzuqKdFEAxd+PFnTsfekXw5urTw8sYprIt2xhyYQt+rpyghWMkh:cRE7v2/EAxIPVTsf/gqs8nQShyTt+Rh3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
290027325d5052f6e7e0371335521b1164c0469263b06eded593f81feedd4e69

Files

290027325d5052f6e7e0371335521b1164c0469263b06eded593f81feedd4e69
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

sykU.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 695KB - Virtual size: 694KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ