1e7e2e8ccb71e040e5de396f4326df5037c45e2d5ae7a5f0ea0040b7fb26d0a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1e7e2e8ccb71e040e5de396f4326df5037c45e2d5ae7a5f0ea0040b7fb26d0a4
Size

59KB
MD5

3f0ded7a7b7691cbeec0ea823b04ef01
SHA1

5f723c4cbe7b70e18ea27dd3fe44b64e33a0b8b0
SHA256

1e7e2e8ccb71e040e5de396f4326df5037c45e2d5ae7a5f0ea0040b7fb26d0a4
SHA512

8080fb851822603a383530fe16708f9bbbb6b4a35fdee7788e2e1566930b500642b35c4f5d9e8b6a85881998573bad10ab0e6e1433b237e3c245ed44f3fedfa3
SSDEEP

1536:5T3nJ5fOL0v2JMkKtGAIatLVzgLAu7Ejti++cYCoS6c:xGAvsKtGAIatLlgLAu7EjQ+ZYCL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1e7e2e8ccb71e040e5de396f4326df5037c45e2d5ae7a5f0ea0040b7fb26d0a4

Files

1e7e2e8ccb71e040e5de396f4326df5037c45e2d5ae7a5f0ea0040b7fb26d0a4
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

F:\WS\Cypress4.2-Build\PDE\OTITrackExcel\obj\Release\OTITrackExcel.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ