93af04866fe94141664174864c6965777d7f78897a27ca858d6f79b653ca943a[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93af04866fe94141664174864c6965777d7f78897a27ca858d6f79b653ca943a.exe
Size

637KB
MD5

14034f0e42aca2acda27f38222796f48
SHA1

ed5cecfeed153bac01301683e770f6d0586f37c3
SHA256

93af04866fe94141664174864c6965777d7f78897a27ca858d6f79b653ca943a
SHA512

04aebeee6db83dd9a7bdf5a36fa9ce2a1055a5d35b3ada2830062902778214503994bf9a013bf75eace74b917b8627e7f3e466f1d54676216b3357881ddce4c5
SSDEEP

12288:c/BgZ/l8m10sSzBZMmXXrK/3b6ThKzc4+Wa+ktXYLOCIMIgAJ:c/Bxm1ZqKcX2Pb6UzAWZk2XH5AJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93af04866fe94141664174864c6965777d7f78897a27ca858d6f79b653ca943a.exe

Files

93af04866fe94141664174864c6965777d7f78897a27ca858d6f79b653ca943a.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

zygG.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 630KB - Virtual size: 629KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ