133b97afdffd5b09ffc5f029bf1b748bfa35b36b684a612e422592fefd14141d | Triage

Sharing

General

Target

133b97afdffd5b09ffc5f029bf1b748bfa35b36b684a612e422592fefd14141d
Size

4.3MB
MD5

86469bedf3ee22c7fed20926dc17edf1
SHA1

210ee51a5025eb61bd3dec44ee68e152cbef3a36
SHA256

133b97afdffd5b09ffc5f029bf1b748bfa35b36b684a612e422592fefd14141d
SHA512

4e078295bb11f33027129906215da82e00b13e704ed7ac80c4e2107c82b503e985ecd72b642b0bd7244a5446370afb679ea132b540afeb5402690751f679b126
SSDEEP

49152:IEhou+qqSuU10oILkP6cSiWQgOe5f4i8eyDT8iyczH89pKhwIV9S/mClhqau:DhoDqpuU1H6u/slhqa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
133b97afdffd5b09ffc5f029bf1b748bfa35b36b684a612e422592fefd14141d

Files

133b97afdffd5b09ffc5f029bf1b748bfa35b36b684a612e422592fefd14141d
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\TeamCity\buildAgent\work\c0553e9788e4bde2\ChobbyLauncher\bin\Release\Zero-K.all.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 308B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ