Team073[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Team073.exe
Size

874KB
MD5

3e51b6b6ba4f0491678ea222b5e0dc94
SHA1

fa483585e34ce62b65976b0995aa71b467336cf0
SHA256

e7da4b58cc3d3647b998aa5b5ba1f0f3f013b93765ad52ab3a1fbf2f7c077f74
SHA512

cebe9d8ae4c6c225c43e08b1d40535b2e26a588d5fc4aa693718750c7622aa2983e720d06c286d154d0bb0ca43ee9577cf12b4c8b25f59be5431c9c7b3ab10ed
SSDEEP

24576:GNMiRh2So6knsz0BDDifsNYq0z4xp49Gs0/8OK:G/zknsABDeaRk4xf/T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Team073.exe

Files

Team073.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

JHKWB
Size: - Virtual size: 5.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ASDLK
Size: 870KB - Virtual size: 872KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE