csni[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

csni.exe
Size

36KB
MD5

8378c4598879335fbe6e659d9e10ce18
SHA1

94e57b417eab9978f0e4f2f77bc0ecb2f7469f51
SHA256

d92dddd575a742e67df3307c841a9ec1ef9c73313c505458c8a66e2559408f06
SHA512

fb3d2bd0e2939fd1823cb66a425c56093685d4a1e2c6c8fbee6c8016edb40709ff233f14d8f34a7da59e05172907b5de4f48312346bfd55e03f179c6b4e50258
SSDEEP

768:hkq2fPwtnEnNHa7zHkcaXBYQvx7NKiNiY6G:hRWPwtneHa7zuXBdp7Nfb/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
csni.exe

Files

csni.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ