198b93bb1289cbac6fc93c47957648a0N[.]exe | Triage

Sharing

General

Target

198b93bb1289cbac6fc93c47957648a0N.exe
Size

301KB
MD5

198b93bb1289cbac6fc93c47957648a0
SHA1

61a98a5418fe9a607767a5a55262be0ae8db0d3d
SHA256

c958d3b023f127f2429243bf1668123b005fd406321c2c08b13bb1957bd5ee49
SHA512

521dac9cf2c7850e8772766c530232f4b8b63a407b289fe5797705a4fdf0bb413e2f213094c1544ff6bddb5ff8b1780b39af1c6ac935fd548a9cac1a40bc2569
SSDEEP

6144:MoSoY3p1vcakVBifFES/jU4Wa4gwW5AZ5o+e7mGsxBQrB/5:MoSF3/cakVBoEGSZ56mvO/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
198b93bb1289cbac6fc93c47957648a0N.exe

Files

198b93bb1289cbac6fc93c47957648a0N.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ