90b118a249409aed8b93b839ab86e2fd2a17b1c8b3c1dca7e552576b778296c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90b118a249409aed8b93b839ab86e2fd2a17b1c8b3c1dca7e552576b778296c8
Size

277KB
MD5

22d8d96b90e37489b2f8da999162a7d0
SHA1

6909452b882d17b2f492e2d78b99c2a00764e619
SHA256

90b118a249409aed8b93b839ab86e2fd2a17b1c8b3c1dca7e552576b778296c8
SHA512

48887ffc6f9a89a5b5c978ffd75e80bafd9bc281ea1a2e1a5ce27e42397a3cbf41e74d0bcb02812eabad58635e08dc6c65992091d412608369bb5cd0d6479557
SSDEEP

3072:owA3AiKWarP1Fn8FMEBDJC/l/uR4rMGjrPaf6HUOsVDgqyxgcmdtW9jOtr2B/PW5:AKWaT15eFdt+jssWLE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
90b118a249409aed8b93b839ab86e2fd2a17b1c8b3c1dca7e552576b778296c8

Files

90b118a249409aed8b93b839ab86e2fd2a17b1c8b3c1dca7e552576b778296c8
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\git\wsa\WSA\WSAMonitor\WSAMonitor\obj\x86\Release\WSAMonitor.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 237KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ