z349dth1eOtMzxuuRN[.]exe | Triage

Sharing

General

Target

z349dth1eOtMzxuuRN.exe
Size

795KB
MD5

bd19b42305c151d78f451b2cd76e1867
SHA1

6e0b260dc6fa468a102b86bca169abe5fad3ad77
SHA256

9e49f5122ac42ba8a4619dd7ba2252da4118b9fd1755d2bdf17e2d179a3f5128
SHA512

998abc5aad3731e0dca75ab50fe11d8359841f84ee4089dda9390a97ac1b4dc272aedd050bc3a2f41bc966df84dddb906c3c103133ace46504879c5d42d4c7c4
SSDEEP

12288:jTfNJmCKE2pb57IvNxDPbAIunfmjFLpsA2++GBSYrgCkkrJ6bb:jb2t5svzrbAnuzsp+lnz6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
z349dth1eOtMzxuuRN.exe

Files

z349dth1eOtMzxuuRN.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 774KB - Virtual size: 774KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ