Salad[.]exe | Triage

Sharing

General

Target

Salad.exe
Size

2.7MB
MD5

839ddeb57dce73e6f354499323933378
SHA1

bb4b28011018e51adb9a5310ec54fcf9a2cecf51
SHA256

c7070b6c4f86315a7f441104c11cfa075d199d10f58d4a6def42e0fba3834426
SHA512

aa75ec396f34e097226c5c03dce99f1c356117e49e2a1ee42c675352730b1d5f96224e798b63bd45da539dbc102d3a0f77f4491910b9ccdba138ca9f226ab47d
SSDEEP

49152:NOJvFeII+PiGd/Mx9kmMzWut9qYR9kqXfd+/9ATrgBWBKH8jkDVFCNXODzWS9HfO:NOJvF6wiG5/Wg9q+9kqXf0F9+KH4kpcR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Salad.exe

Files

Salad.exe
.exe windows:4 windows x64 arch:x64

Password: Mangogarden202

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\aless\source\repos\Salad PRIVATE\Saalad\obj\Debug\Saalad.pdb

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ