5a1cd228c3fcbc9bc1c245407151fe172f82c76ccb8bf77cc26c568341307e4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a1cd228c3fcbc9bc1c245407151fe172f82c76ccb8bf77cc26c568341307e4f
Size

92KB
MD5

d63aa122c829f715de58fe3dcbed1da3
SHA1

0007658c7dd5a46303b27456e860272b4e2995f0
SHA256

5a1cd228c3fcbc9bc1c245407151fe172f82c76ccb8bf77cc26c568341307e4f
SHA512

27ee2f725a6f7b837ff9749515baaee18f92ce1121c6e61bc6b17b599558927e70eac3c69f2004f5c4dde82023d0f971a5350a3161848e5b6b0de2cbb6055cda
SSDEEP

768:idMZqfV2DBdNRvU1f2nXCDSR3HVooSfSwrlY+6O0G1eXhR9wh7:iqBMM5MoSf/NN0GYx8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a1cd228c3fcbc9bc1c245407151fe172f82c76ccb8bf77cc26c568341307e4f

Files

5a1cd228c3fcbc9bc1c245407151fe172f82c76ccb8bf77cc26c568341307e4f
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

ConfigWizards.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE