66b1c36969eae_main[.]exe | Triage

Sharing

General

Target

66b1c36969eae_main.exe
Size

4.0MB
MD5

3d04dfed5185e2f62819f0951249e391
SHA1

528f55d6bb9b2a23da94800641957136add271a5
SHA256

414d432c45e1a2ff1d55b0f342b8e0503a9dd8180e81f597b06e29d36fee8cef
SHA512

916381af6ab9b3edacb48703cd54ee681dd3b72da950e3e19e01ef1266f75842bc8ef892420c746313b0c54af15e4333b0c442ec9b7fbcfecf32f083c88af756
SSDEEP

49152:nZPP0i5bNv26aN1CoDNgQ2mON8qBvaRmVI/wmsGjAaJWJCL3PItIkUAsqBwOGIL2:C1CoDCN8M+yI/xjAk3PIq6wIa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66b1c36969eae_main.exe

Files

66b1c36969eae_main.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

electrycsoft.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ