FT876567090[.]exe | Triage

Sharing

General

Target

FT876567090.exe
Size

764KB
MD5

773778752662f5a81d6b7a2015890b79
SHA1

662be6bed03ec5afac72029459157d7908797622
SHA256

86f02fd88dc04b311ec6ae30fc2e4fc8be6884f24654a5103b7fb85f7631f99c
SHA512

6f3cc620230339aa6ca7f988342e463feffca6c2be0023cb96879a6fe161a9868f0f702027be0487942c2fc2130a026f93f8efd5f7ff9cc0cbfb18fcff6bc598
SSDEEP

12288:2jlIpHtMPku+l0CPPZlhn/3EHE69r3WJ/Ggh6Yz6Co7bbJ/k5ggzBv7V:2jlIhSPd+p9/AEESd5z5o7b9XgzBZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FT876567090.exe

Files

FT876567090.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 754KB - Virtual size: 754KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ