a502ffeaa3239662b75e0cf99c7e2a62399fb97513a69eaf17ad4ade46e8035d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a502ffeaa3239662b75e0cf99c7e2a62399fb97513a69eaf17ad4ade46e8035d
Size

28KB
MD5

7e512a0fe60ca899e7721500e9e16bed
SHA1

0ea40cde04253d99671cfa4f2444fa3e799caf6a
SHA256

a502ffeaa3239662b75e0cf99c7e2a62399fb97513a69eaf17ad4ade46e8035d
SHA512

7af9b9917f8b20d212941ab38b7369f8e8229e912c544387cc27c16e506edd5a4ffa9ed224b295eb29276e3c723f9ca85f607dd02a92b8d4b3b91613362338d1
SSDEEP

768:O6Y+O5wJRDZcQ91hLYfTXTk/XddHyMSP:3Yy5ZHLYLXQ/tdST

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a502ffeaa3239662b75e0cf99c7e2a62399fb97513a69eaf17ad4ade46e8035d

Files

a502ffeaa3239662b75e0cf99c7e2a62399fb97513a69eaf17ad4ade46e8035d
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\jk_9\workspace\CBB_DH3.RDA000419_NetSDK_Windows_package\code_path\Main\Demo\C#\OSDDemo\OSD\obj\x64\Release\OSD.pdb

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ