3a39b16020e7e439c110c43bc0e117ab059268b1b999f1f0af1b625b1f553eda | Triage

Sharing

General

Target

3a39b16020e7e439c110c43bc0e117ab059268b1b999f1f0af1b625b1f553eda
Size

282KB
MD5

8e9cdc4e61e16fef150dac299e2585ad
SHA1

cdd3dff78562abc8937b2d8cb614ba2b716aaad4
SHA256

3a39b16020e7e439c110c43bc0e117ab059268b1b999f1f0af1b625b1f553eda
SHA512

4161a1868488b88942cd9fe0ea65145deedaedf4ae3654c9cc77fa0afea2b4b3c005be7fdf7dad31a635f40108ae46d7cee571cdf0d0562a0e1deca408a254b6
SSDEEP

6144:boy5p178U0MURaGyNXYWQzHazRfXrwSRnWwhrQ66fKkfM9:boSeGUA5YZazpXUmZhZ6Sh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
3a39b16020e7e439c110c43bc0e117ab059268b1b999f1f0af1b625b1f553eda

Files

3a39b16020e7e439c110c43bc0e117ab059268b1b999f1f0af1b625b1f553eda
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ