1622822b3f7f66537240b4760560550654eb2c23c1f57c7e4bb52d3cbc5edd5e[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1622822b3f7f66537240b4760560550654eb2c23c1f57c7e4bb52d3cbc5edd5e.exe
Size

366KB
MD5

3b2250172cdc65f249533ad138ef8ab5
SHA1

70d66ee841754f39e7abffeb8f980be3f1e50033
SHA256

1622822b3f7f66537240b4760560550654eb2c23c1f57c7e4bb52d3cbc5edd5e
SHA512

d84c97d55e09a2b82fc376678c133bfab49a01557891d5a85dc284da7e981df7ff0bf77bb98951b71d3eca4ef25d9819cb6ad85ff75afaf0c4da0e80d71e461c
SSDEEP

6144:zhhct8bwd3MYhdPGRfvsaFP2s2k5yR7261AuXBAnRhCFiVBLbb/g3ipkai080i:b1bwlMUPGlvlP/2kER72eAuXinRhaMXN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1622822b3f7f66537240b4760560550654eb2c23c1f57c7e4bb52d3cbc5edd5e.exe

Files

1622822b3f7f66537240b4760560550654eb2c23c1f57c7e4bb52d3cbc5edd5e.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\rje\tg\ev8pv\obj\Release\ojc.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ