aba668928f876cddb6a89a26c039f7e09eb634f455f27bfbbd9e55f1194af840

General

Target

aba668928f876cddb6a89a26c039f7e09eb634f455f27bfbbd9e55f1194af840
Size

893KB
MD5

3b4e0e7b1ba1c76ef74f2536fb9c8efd
SHA1

497fc36ac1678adf7d07af71966462324fd897df
SHA256

aba668928f876cddb6a89a26c039f7e09eb634f455f27bfbbd9e55f1194af840
SHA512

634f235dd52d023b85a1a2417d8bd9bda195d654e39120ee202a0863ce4f6c041abc7d2ce2ccd4dd856de9201c36d9a0825efdcd5b9e6bdd491f36f70492631c
SSDEEP

24576:stmEK/IrDZx6ABCupDtCKM97iBs/644etEE:emEPZkuRtmi+S41aE

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/51140bec1d515183c335c97f8fd633a4d2624b17125a84c8e4b8dba2603e3636.exe

aba668928f876cddb6a89a26c039f7e09eb634f455f27bfbbd9e55f1194af840
.zip

Password: infected
51140bec1d515183c335c97f8fd633a4d2624b17125a84c8e4b8dba2603e3636.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ