C:\Users\crbig\Desktop\sdawd\spooferasfasdf.pdb
Static task
static1
1 signatures
General
-
Target
tropical-temp.exe
-
Size
4.6MB
-
MD5
5665cee0159729019c6e169e27c07a79
-
SHA1
07d8ba2e9bb782d15a911e49b5489e45151fe16f
-
SHA256
4f1a4aa1d856a5bb6373a7abf45d6c0688a5473b4a77a3a3f62131b13d7acf94
-
SHA512
3f573d5d81ca2f5036816551336ef60b35d66c1696ccfcac481e261a77188e4860886eb61375425770cb75a7a04ef0e4a60e91a979d9be3de3a674e9d4af6179
-
SSDEEP
24576:yJ9nuEOB4Uryh2Az9cgALFhE8xDgL+95NpvHfIXDtj90M7U/DU/Cy9/dLLxhzmSK:KnuF89cg2FhCL4fITo9wKCze9KPTvUm
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource tropical-temp.exe
Files
-
tropical-temp.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 4.6MB - Virtual size: 4.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ