sharon48399[.]scr | Triage

Sharing

Copy URL Twitter E-mail

General

Target

sharon48399.scr
Size

806KB
MD5

cbfee83adf934845eb949b5449fbbf84
SHA1

9f12b0ae613bb57cd8f72eab2c8b1bcdb3b8442b
SHA256

a6283622f7508644692b1aab7aa7b1f1e9e9dc56c86710cec7bcaec8db55da6d
SHA512

5276d4eb5dbe373243b1469f5152fe7b1ddb49a54eb481e88087796834bf58b1a39f6774f1d298a24378491161def07d5d18f6a7e07c96bce869e16abb75f60e
SSDEEP

24576:g32nESrd+mqHyzIuSa1OcQuus373aEux6wDbbdlofn:U2nEsIs1OcQuus373aEuBbnofn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
sharon48399.scr

Files

sharon48399.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 803KB - Virtual size: 803KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ