tracer[.]exe | Triage

Resubmissions

08/08/2024, 05:32

240808-f8lc4ateqh 3

17/04/2023, 19:00

230417-xn12gshd6s 1

Sharing

Copy URL Twitter E-mail

General

Target

tracer.exe
Size

2.4MB
MD5

b7a7db795380f7c0ae3d1a86a5f9e3c4
SHA1

55bb102ab180a01c26b045fd561806a3ea72300a
SHA256

e06f72ed8534e0caaf3bfaf889af6b5cb14b51c0866ac7f5cbe48f7b005bb1a7
SHA512

610b1e436295c04a8d73d0817f7948cae9d6508ec1670dec32e1dd4ba589770983cdfdfbbd2e2b7c986d21e71df573eefb0eb544b5b62be94cc9fdaeecf36aa9
SSDEEP

768:qzoObi1Dub64ALnkxhQiUagk2M5nLYPwTmkqvj9c7m5:tbDubSYDPUaR22nTmkqx5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tracer.exe

Files

tracer.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ