4ef702a13b87f44dcdc149ba50fc0a334192c57018ccc1d846d19d8c4646fc93 | Triage

Sharing

General

Target

4ef702a13b87f44dcdc149ba50fc0a334192c57018ccc1d846d19d8c4646fc93
Size

239KB
MD5

58a5c8b03f4f14c3fdfeb1e73cf72ac8
SHA1

fd35c9c55012cc6871812cc985dbdb436ccb0fac
SHA256

4ef702a13b87f44dcdc149ba50fc0a334192c57018ccc1d846d19d8c4646fc93
SHA512

3e18a44e6c113d8f7c975bae6b57137524c15ebe802462c8be8da94b917341fdb4654aa51d9f5846978e827ace1ed521b1da6a33f1200c203e4ac1f9e4cec639
SSDEEP

3072:hsXRmUIMitiMQose27vc+Eld+xZp2vPRL1tT06zJoxAWBcKpSP//dwR1l9B4hT5:GR5IuMQoseGk7RZBGxAycKpSPX2pU3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ef702a13b87f44dcdc149ba50fc0a334192c57018ccc1d846d19d8c4646fc93

Files

4ef702a13b87f44dcdc149ba50fc0a334192c57018ccc1d846d19d8c4646fc93
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ