f5427eef38732f48bbaa2b9341370e2da306f82c2920977390295a5ceacb90db | Triage

Sharing

General

Target

f5427eef38732f48bbaa2b9341370e2da306f82c2920977390295a5ceacb90db
Size

1.1MB
MD5

f9ffe6cb580022b43e1e86d0740e4457
SHA1

1295e2c5c4477bdaa821ae99f91d250d5a020f78
SHA256

f5427eef38732f48bbaa2b9341370e2da306f82c2920977390295a5ceacb90db
SHA512

925d5d5d27d9ac87da5b859b59633f255ae52ef4c2831d34960c09fa7d4d3fc2e6aabca0781f5ea45f61faa54be747737ae573908d05a17c020a33bcde1897c9
SSDEEP

24576:qO2P4Y5DNWb9Yooe6aJvnFMbJfIpxtJygQN+MKln84VXNhk:q/P4iDNW1oUvF2JQEHN+d8WX8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PCGB2GtVYuBR0mw.pif

Files

f5427eef38732f48bbaa2b9341370e2da306f82c2920977390295a5ceacb90db
.zip
PCGB2GtVYuBR0mw.pif
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ