sigma[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

sigma.exe
Size

6.4MB
MD5

0d8c59f425b7dd7781167a1c7cf585d7
SHA1

b814687179e8f93b463b3c3390b614e989c8f095
SHA256

34c2e7c97bbf3c3afdde095f12f9f8b273e07bcfd055eb3e5b865385161e6a0f
SHA512

8198e301c680530249e3f44b9b7d8e2a58ff2bb5f6af1fa95224ee3781243e1ee112d504d8aa6c97cc45ca02c6db17d34ec6c85e9cd17e178743cce7e9d269cd
SSDEEP

98304:aASO9l/0p/RjB165KnY++yQ90CVBZCTjnqNIL40Esvu66KzMPUs:jS+/ARjD6UnS0CfZCTTqmL46m6tS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
sigma.exe

Files

sigma.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\sigma\sigma\sigma\obj\Debug\sigma.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ