99ce3994e500160ef8557fc4b2d1b673fc41e0532ac569db96c42fff32ea1460 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99ce3994e500160ef8557fc4b2d1b673fc41e0532ac569db96c42fff32ea1460
Size

693KB
MD5

6362f79d859b0744f7ddf863f087f688
SHA1

6a256604c42070006732b2c26030796014f523b9
SHA256

99ce3994e500160ef8557fc4b2d1b673fc41e0532ac569db96c42fff32ea1460
SHA512

ad797f793540db0052bf948185566d10078fafa50edbc664ec942f7d3ea4e7b2d437c1e1b0369abc97ac4519c1598264eee62dd9ce250364f3dc0822a423fb47
SSDEEP

12288:Oacrci1I4cG7GAlH3nhEkI3DLTf26v9dHaJAie/bZxA2s9QSl:O5AGcG7GAlH3nhEkI3DLTf2+9d6GieF+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99ce3994e500160ef8557fc4b2d1b673fc41e0532ac569db96c42fff32ea1460

Files

99ce3994e500160ef8557fc4b2d1b673fc41e0532ac569db96c42fff32ea1460
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

MigrationConfig.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 685KB - Virtual size: 685KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 177B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ