256c79716bea203d48afd3676f9a333daf36ab12bf2f7173bce759b5904df7e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

256c79716bea203d48afd3676f9a333daf36ab12bf2f7173bce759b5904df7e7
Size

253KB
MD5

fa6d1e9aa5eeb2b0f32787188b3da59b
SHA1

aacd13656ca17f60d9acdab381c3e5ae85afe259
SHA256

256c79716bea203d48afd3676f9a333daf36ab12bf2f7173bce759b5904df7e7
SHA512

f93596be2713bc3c6885eabe02164353f59093455409755e0a2577e52bf72491ea5df87107e675fff05f417e454e6daf03e90c8cece036f8c4ecb0ab3074966a
SSDEEP

192:xPuTunAtt5Pg1lld07xFVd4yywe/2D4Ec7KdT:tYcAP+PlOzVdNpe/REmi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
256c79716bea203d48afd3676f9a333daf36ab12bf2f7173bce759b5904df7e7

Files

256c79716bea203d48afd3676f9a333daf36ab12bf2f7173bce759b5904df7e7
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ