04fdc210fd3f4cd48f1bef10ecf04179f7e9ad619e4953059655839ac836ccc3N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04fdc210fd3f4cd48f1bef10ecf04179f7e9ad619e4953059655839ac836ccc3N
Size

91KB
MD5

2741ded198d062f14ee89db5aee41d70
SHA1

d7866ed7488ed3f1fe3551139ae1ab59c0afbfe7
SHA256

04fdc210fd3f4cd48f1bef10ecf04179f7e9ad619e4953059655839ac836ccc3
SHA512

e923e3a5aaa2466528e9a79de2737808bc309b62760c4f6df23c9af4e7bb43357b913922ae2529389a9e67ba58faf14419a32dd4c6072edcb5d469e62355b251
SSDEEP

1536:fnG6Eq5uBowcPAomnEoTB9crtbUTORICfExwjIjAWdf:PG6Eq5uuzxTrFSORICWwjIjFdf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04fdc210fd3f4cd48f1bef10ecf04179f7e9ad619e4953059655839ac836ccc3N

Files

04fdc210fd3f4cd48f1bef10ecf04179f7e9ad619e4953059655839ac836ccc3N
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

G:\Development\ForwardOfficeBuild\91A\ForwardOfficeHub\Chain\obj\x64\Release\net6.0-windows\win-x64\Chain.pdb

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ