Oauth-joiner-cleaned[.]exe | Triage

Sharing

General

Target

Oauth-joiner-cleaned.exe
Size

77.2MB
MD5

1b29b3bcde010f603e64237893f49de1
SHA1

f06437d63f55947d8de099b9e6687e205cfcd82b
SHA256

bcec20dcac1cf510c5e55e385ec84a26e93d7bda60fd4163708eba9f1e52849c
SHA512

447ceb3be33a12705a663749a0d9259b7d411f5b6774c8ccd8abd3704a70a542b311a68a5903a4b44a25210748bdc233881ce46c696122310f0820262df84d63
SSDEEP

1572864:ScPlC4hahF/gk98Vb7NL5z1ZLWNmfpee7ycbGrswIG6UiYxDVbWbs4a6m:SqLq5ynMe7fKr7rxjWV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Oauth-joiner-cleaned.exe

Files

Oauth-joiner-cleaned.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 77.2MB - Virtual size: 77.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ