19fa4a3492616724e18625f0fc40628d4e43e4b2f677d51281d257a3a5c0e629 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19fa4a3492616724e18625f0fc40628d4e43e4b2f677d51281d257a3a5c0e629
Size

430KB
MD5

8865b2354499f635ca0abaae200c0f94
SHA1

5afc85bd817386d838ff64604d52d4e4f147e0ad
SHA256

19fa4a3492616724e18625f0fc40628d4e43e4b2f677d51281d257a3a5c0e629
SHA512

4391086dd753c38be0e331e0ac1b6a0ec6446e7d6ba3eb10b04efa9db36db2dbd1aed86bbdddd4a167710d39cf02774b3a07428adcdc0e47efd6e4bb57a7bd63
SSDEEP

6144:Lbt2A6+5k2ve6VtAjUof5zqC9grGN5WRrtX0Q1KgrLB31zukl31jqAOZAc:LbtRrAjUoBm5lTXrLBkkl31+AOZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
19fa4a3492616724e18625f0fc40628d4e43e4b2f677d51281d257a3a5c0e629

Files

19fa4a3492616724e18625f0fc40628d4e43e4b2f677d51281d257a3a5c0e629
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 422KB - Virtual size: 422KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ