90bbe13d70bf935e7d210c8540a30b894b02495debb24e125042af9264d6e591 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90bbe13d70bf935e7d210c8540a30b894b02495debb24e125042af9264d6e591
Size

630KB
MD5

51ea3d268555c8717f156194e6aa3490
SHA1

2c3d23873bb951d77bfe4861c6b712bf3f0bd693
SHA256

90bbe13d70bf935e7d210c8540a30b894b02495debb24e125042af9264d6e591
SHA512

8fb5a9df97577d5e2b5d6b7f6f80eb380e5c7f7e268956719d1b7ab828d027bad1a9744869e1549866f81662708d2cfb76e3e694a68c4e07754ebd81b79e19f7
SSDEEP

12288:oLczkAc/aLuEeESWExSc4AKHOsk0iviyn/SetvFdYSpjQ2P7foOSz+:oykANEESBliK0iviWqMFdveI7f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
90bbe13d70bf935e7d210c8540a30b894b02495debb24e125042af9264d6e591

Files

90bbe13d70bf935e7d210c8540a30b894b02495debb24e125042af9264d6e591
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\e9xqmp4\obj\Re\ease\gqa.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 627KB - Virtual size: 626KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ