8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9
Size

700KB
MD5

13c5a61000759346402f0b34ba90d241
SHA1

cbdf3f73b57907e1eb86d6e622f83de958dde709
SHA256

8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9
SHA512

52e688c77a21adc59723b38d9b38a9be137290528359c3d1767d2ce961a8c74e8ca4e5ab5697d32cf284631f1926c183f1d00d26811100253c9383340bf0feb1
SSDEEP

12288:VlYfarHpUixrVzCKvwAgvcqtwgKSr35cYu6dCOb4lH:/MaTzPdm0qelQ35K6UHlH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9

Files

8474072e7cb3c37bb710635e6c11035b55591c60f9a5f30112b4b20a5cf2e1b9
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Windows\Containers\Confidential\DotnetGenerator\Stub\Projects\may\31\NAM\obj\Debug\NAM.pdb

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ