9ffbee4479b366ed34f0bccf08c4aa10N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ffbee4479b366ed34f0bccf08c4aa10N.exe
Size

2.3MB
MD5

9ffbee4479b366ed34f0bccf08c4aa10
SHA1

936118f1b2687686b210e2ec11f6460da2e67d3d
SHA256

3f81ba795ff879ab1a308df1de4d10bc127d37027c6d227e1d247e19d3edb56b
SHA512

d367a0735b6d78b1d3de30b243d7a0491c057cb5c89fd761fd44126806a05d6f5dd89740bdff9ae71da4d9ad4799e13b6bcd22c378e343c8ab07fb7f77a63f08
SSDEEP

49152:gRxbb0k71+FIg4/vj8d5E+PpfLUZmDa2ER0vNgtaQn9Cl2Ev:0/03FIgcCfxDRwkQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9ffbee4479b366ed34f0bccf08c4aa10N.exe

Files

9ffbee4479b366ed34f0bccf08c4aa10N.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ