Impresa[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Impresa.exe
Size

1.5MB
MD5

f4833e5c657cdd5e10eaa1e228f69f16
SHA1

97f7b6f5e14b0226b9c9b76e06958689b63a4fbe
SHA256

2a90d8e55e56ebe2936ca331b66f0ddf97c2cd440adb44a1cab8413e8808caa9
SHA512

6bf3487f8b947ea7c0b8198c8e29e95c08a87e17cf629db1b1587cbddd1d9257eda20ec8106d9037b0403d3610924e1fa4be20c7693d164c59f62fe9e4b4dcb0
SSDEEP

49152:49Rht//dXuvnBR4Qz02bHOVtu0CH7wdumI:49tHRGRq2b5H7OFI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Impresa.exe

Files

Impresa.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

��0
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��1
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE