dc199b6bf0f7ee1fc6788f6b1bb63bfb2119a0f3c3a2bf51f69afc5812d414e8

General

Target

dc199b6bf0f7ee1fc6788f6b1bb63bfb2119a0f3c3a2bf51f69afc5812d414e8
Size

8KB
MD5

7201d8d1da625140051290bbd14c7d00
SHA1

31dbaeb8eee33add423b458fb30d6cf26469797f
SHA256

dc199b6bf0f7ee1fc6788f6b1bb63bfb2119a0f3c3a2bf51f69afc5812d414e8
SHA512

7caae7d929d42842047e3ab14ea255cc8e9ebd43e3e580209368220201891a59cbaa1b1dfbce09b2397d3783f628b7b65011cfcd626e98c05f91fa464ccf7b3b
SSDEEP

192:MK5DhINuAsS6SD3D9MqrbnxAzar0VkdVEkX+SoMedMCrTHcNJ:MKR6EAf6UD9lrb2+rc2ekX+buigT

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/e08d991d692864599647aec078b64dcf0fc7536f920ff2e0b6da2b002122070a.exe

dc199b6bf0f7ee1fc6788f6b1bb63bfb2119a0f3c3a2bf51f69afc5812d414e8
.zip

Password: infected
e08d991d692864599647aec078b64dcf0fc7536f920ff2e0b6da2b002122070a.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ