67baada8627060ea8803d4671205903a7dbbde0aee0facb53376ffee3872a3f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67baada8627060ea8803d4671205903a7dbbde0aee0facb53376ffee3872a3f2
Size

699KB
MD5

aa4c4a97cb8e72c4fa80a3bfb7423881
SHA1

ccfef1f1a07cd548ded95198bc789eb0f9965ede
SHA256

67baada8627060ea8803d4671205903a7dbbde0aee0facb53376ffee3872a3f2
SHA512

d108d6b404bccb7a7a63cb84826011603057cc6b72cd3d740a9d7ad25849c7fd3a43af56a8848b5f84c299d731a573f7848cb06acc73fa72fcc981ac1d9c3c1c
SSDEEP

12288:hFCIAXYMjhvPie/rByY7777777777777cTxKQFOuR9HwA0oEsuOM/oygmB55bX8J:hkIAXYMFniyyLFOuR9QALEsuhOg5bX8r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67baada8627060ea8803d4671205903a7dbbde0aee0facb53376ffee3872a3f2

Files

67baada8627060ea8803d4671205903a7dbbde0aee0facb53376ffee3872a3f2
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

royy.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 696KB - Virtual size: 696KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ