290452c840853f5a72550aa54c6de0c9ba17cc7158323d109db20ed0f6f558e4[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

290452c840853f5a72550aa54c6de0c9ba17cc7158323d109db20ed0f6f558e4.exe
Size

64KB
MD5

a1c86dc93f9e0a75b7bfc502048ceb20
SHA1

b5bcf662c3513eb49490d9656fedcc95c8cbd040
SHA256

290452c840853f5a72550aa54c6de0c9ba17cc7158323d109db20ed0f6f558e4
SHA512

61d8ed1cd6e824808cae52d654a7f097938d009ccd56bfdfc78827d2827fa211efd450c45414e538716041305afd4a5137589131941facae599419eab027ecc6
SSDEEP

1536:6+JMNGfK0AvvojSVWHGyj7B04sIIFwqhkZR:KNGfK0lsVxO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
290452c840853f5a72550aa54c6de0c9ba17cc7158323d109db20ed0f6f558e4.exe

Files

290452c840853f5a72550aa54c6de0c9ba17cc7158323d109db20ed0f6f558e4.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\Perforce\MTKWGT\tools_LTE\ELT\Engineer_Mode_Views\EM_Views_V4\NR_PHY_Tput_DEMO\obj\AddinRelease\NR_Phy_Tput_DEMO.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ