2024-11-22_f013c4e60673ec88cc3eb813a2907a13_hiddentear | Triage

Sharing

General

Target

2024-11-22_f013c4e60673ec88cc3eb813a2907a13_hiddentear
Size

677KB
MD5

f013c4e60673ec88cc3eb813a2907a13
SHA1

e32a9e5054bc76a63b86d245bac325540277b358
SHA256

1002a3e30b6720bace101a0bba1f2861778432ed95a5d7cdc868f6c62b7f68e1
SHA512

b439b9c1996b991cb21d88726f70f2c78289943c732c7e1d7dab7653f608b837711c88a330e1e1b2d52e967bc4199e6369007ffcb4648b70eedbc9584df15d72
SSDEEP

12288:NrOU+Ri3AgFdsivU1xtw08bMoRQAqRv868iOZ4ok3LKdAA:WQ3AgsYUJtMMonG87iok3UA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-11-22_f013c4e60673ec88cc3eb813a2907a13_hiddentear

Files

2024-11-22_f013c4e60673ec88cc3eb813a2907a13_hiddentear
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 576KB - Virtual size: 576KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ