3164cff9cff2e7199edcc1bca0549790N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3164cff9cff2e7199edcc1bca0549790N.exe
Size

384KB
MD5

3164cff9cff2e7199edcc1bca0549790
SHA1

a92e66caae08b24437f86eeb041fec5762dd9871
SHA256

c3871c98205ab98295896997e497f942ddce048158492ab829b1e40cc0f73640
SHA512

189d8ae2aa9b8ee58ece69026933544912f1b71d6684e97944ea275d9fc99f58a8d8b8247e2e0f7b7b6fc71424afc64c1fc965f9d4ef5ee105efaad2eb90cf7a
SSDEEP

6144:gBkV97lRcWLSL2LiASULL+uLqLSLSLSLsXT+pdeJdLcfazBS2L:jFcgHSiL+Y0cccqTIIZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3164cff9cff2e7199edcc1bca0549790N.exe

Files

3164cff9cff2e7199edcc1bca0549790N.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\proyectos\COMAFI\formatter\App\obj\x86\Debug\BlueworksFormatter.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 365KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ