Testprog[.]exe | Triage

Sharing

General

Target

Testprog.exe
Size

533KB
MD5

aac53d8ae11403008d421c19e26c6f9d
SHA1

59fcb6dcd8a7b22cfe7ead3ce6a4b1c0a814e898
SHA256

d9fb6347296a7dbfda6be3ced9d12b72940d46347090bb10a462a825427029fe
SHA512

6cd812634eafbecd62dfd26556c062b03746da4b06fbf2fa1c90a4c104e6761373fd7a2b66a0fe87cba66ef57169d52a7142bfc9ec50a457b776f82b795ad09b
SSDEEP

12288:6ZkEb6EcwNbyWHU25vmVmriUKmbV6QWMm2m7e3YChwNuQp6ML2:obyiU2NmVmrRLxaJ2mioIwQQpNL2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Testprog.exe

Files

Testprog.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 201KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 329KB - Virtual size: 329KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE