14f98a7cfe2586c099589c156dfb5bc74947b08c7b9d1a35735979f635e3e414 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14f98a7cfe2586c099589c156dfb5bc74947b08c7b9d1a35735979f635e3e414
Size

226KB
MD5

af1ffdc9481695421e840c8e0d71e5f3
SHA1

df2c7784d84e259c71b4277bd0543285db6c26ba
SHA256

14f98a7cfe2586c099589c156dfb5bc74947b08c7b9d1a35735979f635e3e414
SHA512

8de712b57042d0166348bf612ee7f0779bcdf5a7800a0b7ac474f1e7487d0bfe373594edb4ee3d037d99963043d5093ff29a4cf11ba3e7c1f38082b74da69500
SSDEEP

3072:WWSLQKlqpa6bn44Jv3AdwMbvF6x+I9BINTselFuL1:jmCn44Jv3CwMcx+aBQselF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14f98a7cfe2586c099589c156dfb5bc74947b08c7b9d1a35735979f635e3e414

Files

14f98a7cfe2586c099589c156dfb5bc74947b08c7b9d1a35735979f635e3e414
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Dropbox (Magma3)\m3.instaladores_produtos\agente-win_xp-x86\SendData\Force1.SendData.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ