4ce566474f4e5f91b651640ba6482aa9a1f620cc6e5e8b07462fdc1279745211N | Triage

Sharing

General

Target

4ce566474f4e5f91b651640ba6482aa9a1f620cc6e5e8b07462fdc1279745211N
Size

441KB
MD5

872bdcf16635771bf8cd5c90c8801370
SHA1

8f6575378a538f0b80e2d5bffcb448fa308173cf
SHA256

4ce566474f4e5f91b651640ba6482aa9a1f620cc6e5e8b07462fdc1279745211
SHA512

607dfc34c9679986344a265529434042515d90826cb935431aea8862a6a2419124a3d223f3468f33ec437563ca9a292ae3e05308ecd3eb71fe8fef11f09d7d6e
SSDEEP

6144:siTTmZRzSq1wE9XNgShcHUah0ASTRxIXnkixpOv5KF5nThYMBTRHROIre:sIiZRzSVvUah09V/ai0FNHG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ce566474f4e5f91b651640ba6482aa9a1f620cc6e5e8b07462fdc1279745211N

Files

4ce566474f4e5f91b651640ba6482aa9a1f620cc6e5e8b07462fdc1279745211N
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\dd\wpf\src\Host\XamlViewer\objr\i386\XamlViewer_v0300.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ