7a1d42c0c30f339605599557110a2ed20f77ba0685f87cd213709309c885ceddN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7a1d42c0c30f339605599557110a2ed20f77ba0685f87cd213709309c885ceddN
Size

68KB
MD5

de6f8259924a709e3d4aca74e9a991b0
SHA1

d925d4df3e874eb15fad01200b9a956d81371635
SHA256

7a1d42c0c30f339605599557110a2ed20f77ba0685f87cd213709309c885cedd
SHA512

09bd9f6d26acae272ed756cee5e0b53d761d841e39588cfee800f8823c96228bc3b518174eac0d3ea99ffdaabc58526345df20dbf037d7add39b3b91da883fb8
SSDEEP

1536:WofJ8i39vlWqiqKzoTGWwQUxl8AgA0qgw4+pjd7mJp5JBOKhJ1XB1vBG:lfVJlWqEcqFQU78AgAngw4+pjd7mJp5C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a1d42c0c30f339605599557110a2ed20f77ba0685f87cd213709309c885ceddN

Files

7a1d42c0c30f339605599557110a2ed20f77ba0685f87cd213709309c885ceddN
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Documents and Settings\kreoton.KREOTON-N\Мои документы\Visual Studio 2008\Projects\WindowsFormsApplication4\WindowsFormsApplication4\obj\x86\Release\WindowsFormsApplication4.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ