5d57aaeb136d7e63d4a390c0a031f300N[.]exe | Triage

Sharing

General

Target

5d57aaeb136d7e63d4a390c0a031f300N.exe
Size

1.0MB
MD5

5d57aaeb136d7e63d4a390c0a031f300
SHA1

91dfc3a88b14597d0834451df07bd4af7716c7b3
SHA256

399d335502736eef61d1377630acc60bc88d5857e13a4500e3175a0a70dd1152
SHA512

b1f1e437e6df82a0429c0c8467b8b221c10284bc423555d2e025224c2e8deb7af468573a9202d599bc914e1b143c841d65178e09d2a0e4fadd1e030a6a92c78c
SSDEEP

6144:X9mI/A/bpCQqR5yqL5pbqD8T/ruThC711qC711f:X9ro/4QqLrqDC/ru8PDPf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d57aaeb136d7e63d4a390c0a031f300N.exe

Files

5d57aaeb136d7e63d4a390c0a031f300N.exe
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

_Gavno@4

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 829KB - Virtual size: 65.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ