b44e22a6cf53478bd03a336444403367[.]exe | Triage

Resubmissions

10/05/2024, 02:29

240510-cyt1psdg4t 8

10/05/2024, 02:23

240510-cvfznsgg54 8

Sharing

General

Target

b44e22a6cf53478bd03a336444403367.exe
Size

19.3MB
MD5

b3d2366a3f33d931c7f908eb614b731c
SHA1

9faab782e97dfc7d98020b38b24964db2d9e27ab
SHA256

ae0aa0f9fc388ff5f05e6c6a9306ca607937c61e95b6f3d7a8b7e3eedeafc44c
SHA512

d5828b36b38477a7d8f5e05bab22989509ad04b3475076b26a7ee9f78440abec8289de42004d5a653b81b83dcf7bcdc6c8be26885d4d1adc616ef8e50a4e5975
SSDEEP

24576:/gSs5d4Uj19IntmVtK58JZrGVQgxL2c3+xfEa:/dsQQYWKy7rwfZ2c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b44e22a6cf53478bd03a336444403367.exe

Files

b44e22a6cf53478bd03a336444403367.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

�#R{^>dc
Size: 418KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 18.9MB - Virtual size: 18.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ