tttt[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tttt.exe
Size

284KB
MD5

e9c827bab993abfcd0270715cc9807b7
SHA1

8f0a87f9ae24ddcf63b92b247c34e673a17637bb
SHA256

6067bbbcb7e7a3e9b9032a2cc9b2bee164650daa62f1b6964a58bf9381e24c7a
SHA512

dacefbef3ede23a9e968a11d77c8fae5cd05526f9909da4d5377d6673e508a1e59e16564fd130c935bfaca01b271ea664b1d26ced1eb61d5c700f2cca35f9d0a
SSDEEP

6144:JTVdhOTF5on/hREAzNJxgT4ZjvmWLG7IbXzf9:JTHhj/hBiT4849Xz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tttt.exe

Files

tttt.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\trenb\OneDrive\Desktop\tttt.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ