6a49718a9247fef06b201e2bff8933aa802b6a1f3b7ad20b5ec2f08f3439cbd4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a49718a9247fef06b201e2bff8933aa802b6a1f3b7ad20b5ec2f08f3439cbd4
Size

930KB
MD5

fd95dfc0cf0ec44f20acbb275ec53e9d
SHA1

ecfbf06658d24ea5d4f6a2235785a75f9ce5411d
SHA256

6a49718a9247fef06b201e2bff8933aa802b6a1f3b7ad20b5ec2f08f3439cbd4
SHA512

f667ff37367477af397193602b6756f0c05daae7d15f26b872b58b9a0c450d7e473a5f8e0c23dc899f51a7a7fb13d75e5190691d7d4437fa989448ae51948bbd
SSDEEP

192:xPuTunAtt5Pg1lld07xFVd4yywe/2D4Ec7KdT:tYcAP+PlOzVdNpe/REmi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a49718a9247fef06b201e2bff8933aa802b6a1f3b7ad20b5ec2f08f3439cbd4

Files

6a49718a9247fef06b201e2bff8933aa802b6a1f3b7ad20b5ec2f08f3439cbd4
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ