71c249948b9c2623e953d97408790620N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71c249948b9c2623e953d97408790620N.exe
Size

464KB
MD5

71c249948b9c2623e953d97408790620
SHA1

9fb3f47bcc88ab5e1db5e40a3df70cc12e6b49ec
SHA256

d0da7289f71b9171be9abaa2176b53de3502aad700f194af0e0416e313559210
SHA512

69bbdafc7ae7a534831f8bf7e15d340bb9819536a7528a852ca3f7968987cff0bbfa9db0db5af6724000216777246459160bd369fb09b768b16320abca10467a
SSDEEP

12288:Cylc87eqqV5e+wBV6O+6zrxAPTlnp5sGm+z:CySqqHeVBxbzrxAPTljsGm+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71c249948b9c2623e953d97408790620N.exe

Files

71c249948b9c2623e953d97408790620N.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.l2
Size: 229KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ