Poniva SSL[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Poniva SSL.exe
Size

10.1MB
MD5

2eaccfc0e0df8c079a5da3c972137aa0
SHA1

b8dfe91029de5286b7da8492fba15d86358d716f
SHA256

64c8e187cdc61655f23439c4577f68b05863bc978449345ba8ffdd39b09719c5
SHA512

b008bbc0215e161e8207f6af718483f4588efc6f982b40e33f57b65bd9c404d13646c9fd2649a0244b66c4626a9f5808f14866259d625de9adb062657a2f91f2
SSDEEP

196608:mkIrqGRLBURMlUBF/ttWII946bpuVGnwTHBA5pfb8g6PE4cHBI:mkIrdBURMlgfEnwTyus4iBI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Poniva SSL.exe

Files

Poniva SSL.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\PONA\source\repos\ponivaSSL\ponivaSSL\obj\Debug\Poniva SSL.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 10.0MB - Virtual size: 10.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ