245b7169dfb9ffd81270e89eff72fd0c6117dbe3508d5e27c1f44e02a513a84f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

245b7169dfb9ffd81270e89eff72fd0c6117dbe3508d5e27c1f44e02a513a84f
Size

83KB
MD5

cef15f9b88a199ac48753482e27366bb
SHA1

4f5b150ca6d79e4cf59238fe1a9cfb85152510ce
SHA256

245b7169dfb9ffd81270e89eff72fd0c6117dbe3508d5e27c1f44e02a513a84f
SHA512

5b0e3d020c6a7bd24a8c19d9cdce0dfd9b2eb146bedf95ae31d2917a2d073ee7e82cfe4d98af2881ed372637605b6f6838eabbab3693759fcb96f33b9946fd1c
SSDEEP

1536:wChCZmBtwn0Z+nzW9heyZzyxxFky8s9KVRb2mkm+Aqc2jtlC:wChCsBtwnLnYWxFky8SKVRb2mkm51EtM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
245b7169dfb9ffd81270e89eff72fd0c6117dbe3508d5e27c1f44e02a513a84f

Files

245b7169dfb9ffd81270e89eff72fd0c6117dbe3508d5e27c1f44e02a513a84f
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\Projects\OrderHandler\OrderHandler\obj\x86\Release\OrderHandler.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 123B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ