download | Triage

Sharing

Copy URL Twitter E-mail

General

Target

download
Size

208KB
MD5

1e7379a7e41a14a644c3ae606ff25a69
SHA1

9933a0cd2129c5d9908c61b5852c749c9c713282
SHA256

1bcd0f953c61e2eba782a435e24597bf9b29956789607d10f3690602e712e359
SHA512

7d43d54e6aa361ae8be5ec2a28589c49f7783c8b9c7ff0be782989742365b06579b17390ac5dda4643b24f780e174b92c9803a34953f95d82bb0dd16e625b2d4
SSDEEP

6144:QhHebUcSxw1RrPDhcZhyL8vr/5FZRAdPOl/AT7tD9:s+SxCJbeZQ8vNFZAPOST7t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
download

Files

download
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\XX\source\repos\SXVM\SXVM\obj\Debug\SXVM.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ