fa802d99ddba32cc9122656cb13e4791cc6bc109a51273116f452c76ae02a72d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa802d99ddba32cc9122656cb13e4791cc6bc109a51273116f452c76ae02a72d
Size

671KB
MD5

60bebe223ad34cae3a2470e885df02fb
SHA1

43c568865544a951205948329b81a4b18dbe304c
SHA256

fa802d99ddba32cc9122656cb13e4791cc6bc109a51273116f452c76ae02a72d
SHA512

e7dee7d5d54c978b50b36b29715b4248bbfd7a0e4e868e160ca7cc7719886b9f342ff74db461ed7deacfec45d084e7ba4e12360b58de59ec446d9f86bfcb4fb9
SSDEEP

12288:sggXfndO6tKKg8Kr5D4SbPqcSc1KfmXZ9/J3K9CZv8GW7oIW1:8QD4STPSkr1xKgQ0IW1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa802d99ddba32cc9122656cb13e4791cc6bc109a51273116f452c76ae02a72d

Files

fa802d99ddba32cc9122656cb13e4791cc6bc109a51273116f452c76ae02a72d
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 654KB - Virtual size: 654KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ