Atinad[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Atinad.exe
Size

12.9MB
MD5

3661bfd5ed1f63d05e9ad02b7ff60b41
SHA1

fb959956245dfa9ec1c831a5d9d89b3ee4524616
SHA256

5ee7fe28793d39134049dad88810aa049f65921718f2a9a211806cc80d2228c7
SHA512

fe21d962187ad4574753a6d38b3eccb374ec54e683de221d26a020255fec888d26af44f2c6c58b07509fc8d12010175f3c1c17d0090fc8b529085c1e537ce4b5
SSDEEP

393216:xIuc+Di/Dy7PEOE/O2yrc4qNQzYVvX5TTb8:xIuDqyTEQENtVvX5TP8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Atinad.exe

Files

Atinad.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12.8MB - Virtual size: 12.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ