6991baabfaa3129fd5868e8f4b1b308ecc3d118ff28e8a3bc8e6980cbe244911 | Triage

Sharing

General

Target

6991baabfaa3129fd5868e8f4b1b308ecc3d118ff28e8a3bc8e6980cbe244911
Size

717KB
MD5

04ce129da03ba7f5878fa140d5a0f5bf
SHA1

ee0dd0d5a2c2e58afe96b9a766aea75002574d5c
SHA256

6991baabfaa3129fd5868e8f4b1b308ecc3d118ff28e8a3bc8e6980cbe244911
SHA512

b0d91a3a29a00ecd5766906afae65d4505014dc951a4bb0c4a03abe98afab2340e922fa013f986bd8c14f85b83bd72654d2211efa8766f3984796416ac809fae
SSDEEP

12288:+sr2Gau2dXmsmF+aj4EOwN/17q9/6ggRBwSA9NnozLNkW8rl81BKo/R:+72smkWOwNdON6ggRKSA9N4L31BZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PO#5089124.exe

Files

6991baabfaa3129fd5868e8f4b1b308ecc3d118ff28e8a3bc8e6980cbe244911
.rar
PO#5089124.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 993KB - Virtual size: 992KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ