41a135bf7633cd772fa510b140ada940N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41a135bf7633cd772fa510b140ada940N.exe
Size

26KB
MD5

41a135bf7633cd772fa510b140ada940
SHA1

c96ca6098ee82bae0fd15d29f6a16f9249d2f855
SHA256

ee7c10ae13a10a122b61bacb80dbcccb1ae35bbd8071b583e5d204e7e0f1aa46
SHA512

dc92d6b1b36511d24ba0d1e392c0541b07da8f250a4782a7c49f4a926ea1f3e9e2b8dbc077ee40ce8237844e7cbd7373f59eb4391f10bef7ef57cf631d45d6fa
SSDEEP

768:cdm0jKJM6UnEK7oT6C7elyRyZfooQreF/XRFy:oi0T66fUydlX/y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41a135bf7633cd772fa510b140ada940N.exe

Files

41a135bf7633cd772fa510b140ada940N.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 184B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ