5225144359560e37946c3b53545ad2b0N[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5225144359560e37946c3b53545ad2b0N.exe
Size

645KB
MD5

5225144359560e37946c3b53545ad2b0
SHA1

6428ad330158f4fa9845e60a201e7578bed1c981
SHA256

61171f40af4f18d47695b0c332c911dc859d493f41868786d629e0d7be7339db
SHA512

4d92345f0ed207c90171ae70f3e4c7a3ea56fd7da65ca691618a67b0d34591f2a1e230486113c46eb2ccbc2add8a92ce833d23e595ef479e6a5c5eaebe1598f1
SSDEEP

3072:p85bRj2OliIhFhDj0rfsOsNHslCIhFFDj7rfsOE:kfIIveoOse8Iv9oO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5225144359560e37946c3b53545ad2b0N.exe

Files

5225144359560e37946c3b53545ad2b0N.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\1_OfficePlugin_Projects\AddIn_POC\OfficePluginSetupForOnPremises\obj\x86\Release\OfficePluginSetup.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 338KB - Virtual size: 337KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 306KB - Virtual size: 305KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ