d902f4c53c75042d2e9b2fe276a149a3a52bcd5a18a52be7b5b13abd76a0cb73 | Triage

Sharing

General

Target

d902f4c53c75042d2e9b2fe276a149a3a52bcd5a18a52be7b5b13abd76a0cb73
Size

750KB
MD5

9f423d8f84f6bc2e6da14a4a57e2abff
SHA1

33e9a135f14ab5b19babd62ff31c9a14afd97e95
SHA256

d902f4c53c75042d2e9b2fe276a149a3a52bcd5a18a52be7b5b13abd76a0cb73
SHA512

0659c6a4a7f98e3f7e212db25b8acca3fdefe64741466107b990e6e440912083902fba24de67d83ae63d153fa20b2feef371249431fa1a8c6a0efa69a72e383f
SSDEEP

12288:h5ZefNQdQ4/XVfX9hNMci1Py/on4t3qbJN:hHYci9yA4t2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d902f4c53c75042d2e9b2fe276a149a3a52bcd5a18a52be7b5b13abd76a0cb73

Files

d902f4c53c75042d2e9b2fe276a149a3a52bcd5a18a52be7b5b13abd76a0cb73
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\parody\BackupDB\BackupDB\obj\x86\Release\BackupDB.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 705KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ