5c8cb7485d158a904f33c7c6e806a27e7c9d1bc5a1a0f4b8635826555486f3e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c8cb7485d158a904f33c7c6e806a27e7c9d1bc5a1a0f4b8635826555486f3e3
Size

450KB
MD5

54b1a9040509f10f89158bf2c16dad42
SHA1

e036c8aa0c1a4d3ed4d08c5d67db0df695c5e115
SHA256

5c8cb7485d158a904f33c7c6e806a27e7c9d1bc5a1a0f4b8635826555486f3e3
SHA512

38ecff59fe1f7cb06a88f5bb5fc5e5fd843413f1441cab47d875cacfee46b1f1aced902f63647e2b4d8e349287f42a7b0f2d15d83d88ff4c9a819c4200e9ed42
SSDEEP

6144:/N89aVxiYwhIv9MKaIXqzyr+0MYwhIv9MKaIXq:18BIv9MCMBIv9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c8cb7485d158a904f33c7c6e806a27e7c9d1bc5a1a0f4b8635826555486f3e3

Files

5c8cb7485d158a904f33c7c6e806a27e7c9d1bc5a1a0f4b8635826555486f3e3
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

PosTerminal.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 288KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ