cecce140b4865eab10e9293bda959460N[.]exe | Triage

Sharing

General

Target

cecce140b4865eab10e9293bda959460N.exe
Size

123KB
MD5

cecce140b4865eab10e9293bda959460
SHA1

20bdda4978961b30e9c26b38c648d8c3d23aa541
SHA256

3550aa4cd2488a2c24824e4f23d9f19c769493b91ad91ad34fc4b8c4566577c1
SHA512

ad4e548ca381c350dcaab09f1eb1fa6aa4292de7d500b663489b86a428076f6351c4737f31b40e2ee9e16bc945b51ca9007f1c86624aa22eaf88986d84f82ed9
SSDEEP

3072:BwQSRcs5LUUYiIO4XHpT95OifbSc741p+Iip/:eQScs5LjYiIOIJOcc3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cecce140b4865eab10e9293bda959460N.exe

Files

cecce140b4865eab10e9293bda959460N.exe
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

entry

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ