ef7fb11fdb85d8824af5f3b20e6aeaa0531c0d718d3d11dc04948a5d924bb0c1 | Triage

Sharing

General

Target

ef7fb11fdb85d8824af5f3b20e6aeaa0531c0d718d3d11dc04948a5d924bb0c1
Size

923KB
MD5

c214377ddbfc6b4721db28b83e381edd
SHA1

8ca975d7e8a3a581659076d09147cb2e1ff95b99
SHA256

ef7fb11fdb85d8824af5f3b20e6aeaa0531c0d718d3d11dc04948a5d924bb0c1
SHA512

c9ed14ecfa7fbb127ea25eb97ae17c4e4f292dbc7ad18aa4d98dccac57859125d4b7333cd95e0e52d476ad4b7f6365000f61a047e498c5f6335c03ab85ef1319
SSDEEP

24576:kk7vQavyVoyXO+Q0drrgWID8TUo0yLWXTAxs0Ts:x7vQavyGZ2xrgWIUJLmYVo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
ef7fb11fdb85d8824af5f3b20e6aeaa0531c0d718d3d11dc04948a5d924bb0c1

Files

ef7fb11fdb85d8824af5f3b20e6aeaa0531c0d718d3d11dc04948a5d924bb0c1
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 905KB - Virtual size: 905KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ