3494bd6deec4eb5e0ee75bb71f09f2b33057cc6596d93d90c58d5e66562fc338 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3494bd6deec4eb5e0ee75bb71f09f2b33057cc6596d93d90c58d5e66562fc338
Size

1.1MB
MD5

9487b003b91b14004c6feadd394c369e
SHA1

e8534364ae2b80f101fb3ba32f90229a0c38da36
SHA256

3494bd6deec4eb5e0ee75bb71f09f2b33057cc6596d93d90c58d5e66562fc338
SHA512

75b4b606442270a9a65019a2a4d411853ddea5e98308051ced74967551e89050bc3bca28eece642062d3913ec73c5ad4324daeb269bea4bf98d6e05fdae220db
SSDEEP

12288:qmg12mG34gGk5frTL7bH8pS3aHmIsjef+T96b5NGSdDzTj:FmMGi/3brKHSef496b5nH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3494bd6deec4eb5e0ee75bb71f09f2b33057cc6596d93d90c58d5e66562fc338

Files

3494bd6deec4eb5e0ee75bb71f09f2b33057cc6596d93d90c58d5e66562fc338
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\DieuHanhDangSua\MeKong_New\QuanTri\DXadministrator\obj\Release\Quantri.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 908KB - Virtual size: 907KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ