c05d9da5c811e9d796ee24b7bd9805cfb9095de02e2b56c3e969dec4b67774ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c05d9da5c811e9d796ee24b7bd9805cfb9095de02e2b56c3e969dec4b67774ab
Size

717KB
MD5

da6684316458fe51d9d97f6e195d21b6
SHA1

416dd8c6e1760f690a79ac247df543a716e1ad94
SHA256

c05d9da5c811e9d796ee24b7bd9805cfb9095de02e2b56c3e969dec4b67774ab
SHA512

c0024a534bdcc8adc36ade3c26ad772d266a6a398d7e7e13d4f4735797bf7884383e69cac3be1d96316a7bf5f852aafc1e1806e76f4370a4a7bdc01112093937
SSDEEP

12288:T42iNPyCK2xrOoy2U9PfATWV3385UgyzX8SI9qoEn0ELDwb+GK6FEprCXIXE1HSY:k15yC59UaTuQEX8SI9qXzDy+jZpB05bh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c05d9da5c811e9d796ee24b7bd9805cfb9095de02e2b56c3e969dec4b67774ab

Files

c05d9da5c811e9d796ee24b7bd9805cfb9095de02e2b56c3e969dec4b67774ab
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

GhZz.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 714KB - Virtual size: 714KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ