74e5336cba0e80912e859b7dfc67820f6b42e2e271499c2114dd3d3e2490b173 | Triage

Sharing

General

Target

74e5336cba0e80912e859b7dfc67820f6b42e2e271499c2114dd3d3e2490b173
Size

603KB
MD5

81ca97a1bf84219a30c2e6dc08be2aab
SHA1

5546f3088ef1b7b4baa666ed0c5c11abba981505
SHA256

74e5336cba0e80912e859b7dfc67820f6b42e2e271499c2114dd3d3e2490b173
SHA512

0a01bbd4880998cc179c21d26dde424db3090166db177dbb4fdb297f56b8abf0fd8056bc48826055c6372521df16f51c481c15faa1b3305f5eee2619ee125746
SSDEEP

12288:mvNsDae+qhi/iZQEWnLO6UYiqoRLnmcTP3hl/B9x/2BCNVAMIZqwQfbUzLV4CwI:m1E53hi/qWn74pl/B9xHNVASwQIfD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/w0tV0GxzmSBYvqL.exe

Files

74e5336cba0e80912e859b7dfc67820f6b42e2e271499c2114dd3d3e2490b173
.zip
w0tV0GxzmSBYvqL.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

PttT.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 651KB - Virtual size: 651KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ