2024-08-09_c8fd060d4d48ee45f29d91a57718dcba_hiddentear | Triage

Sharing

General

Target

2024-08-09_c8fd060d4d48ee45f29d91a57718dcba_hiddentear
Size

251KB
MD5

c8fd060d4d48ee45f29d91a57718dcba
SHA1

d81a0c314ecce699a0384887dbcc52aee2e1dfe2
SHA256

e23b1899cae6e35f12d9edcfdc07fa749c41e218954ce5ed0810ed3d02a62da6
SHA512

d884f110316c5a6dc5ab9273f86c21806af324739c290974fc67f376469aaa11cd6badb38f377fd239c25f12b49ea5dd517753f6d13530a535d0a38321962840
SSDEEP

3072:HFt5M+lmsolAIrRuw+mqv9j1MWLQgXWZiMAKh4mDYkXCTkmim90JkFRxTSpxhwct:HS+lDAA5XW0MAKCiYkhmvyC3xTfc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-09_c8fd060d4d48ee45f29d91a57718dcba_hiddentear

Files

2024-08-09_c8fd060d4d48ee45f29d91a57718dcba_hiddentear
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\SOFTWARE\NGHIEN CUU MA HOA-20240419T082947Z-001\NGHIEN CUU MA HOA\ENCRYPTED 2024\rs_encrypt\obj\Debug\Pi Exchange.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ