24de28a2d4c0be7a1605c5c0543f698e08f8529566ebefb44086f5ac8cb9f1f1N | Triage

Sharing

General

Target

24de28a2d4c0be7a1605c5c0543f698e08f8529566ebefb44086f5ac8cb9f1f1N
Size

76KB
MD5

e9a9d4747d4450fc0d3647ae1b38d6d0
SHA1

e76e44a32902a088831593235449298b219e8567
SHA256

24de28a2d4c0be7a1605c5c0543f698e08f8529566ebefb44086f5ac8cb9f1f1
SHA512

7f1dccc392163d04a03c5daba76ef4211ad2ebb1089b7590575ab599713aae4c36cab63c14e73f1be4dbebe218c49142a44114091da3e1bd28698399c798ed7a
SSDEEP

1536:PpyX5NjhErxpyzyvPadESZ0FjfgQrLpfS:PYX5jErxpyzyadERRfgQrVq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24de28a2d4c0be7a1605c5c0543f698e08f8529566ebefb44086f5ac8cb9f1f1N

Files

24de28a2d4c0be7a1605c5c0543f698e08f8529566ebefb44086f5ac8cb9f1f1N
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\BLACK\AppData\Local\Temp\ps4zecn0.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 4KB - Virtual size: 99B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ