db68ee20995fd5efb622a2517a2d623f7894cfaf34827d233d864622ae54b143 | Triage

Sharing

General

Target

db68ee20995fd5efb622a2517a2d623f7894cfaf34827d233d864622ae54b143
Size

741KB
MD5

ccb1aa08ea371139d632a459a9035629
SHA1

342a995d6890839bd54580ccfe60f77cc640cb19
SHA256

db68ee20995fd5efb622a2517a2d623f7894cfaf34827d233d864622ae54b143
SHA512

215de0d0a7570372c9dc199a4abb67e874f3d61ffe27e2a51b7a2974465fb71bebd55d7533eea8dcc6a16570bd87fdb36586947671b42e8bcdd74097d30a27c7
SSDEEP

12288:DHfl1/+7EQXXfYEMCmljDEcKjDc+k9MZCcNpGwgMne0M6SzxNJcxds9L1UIklHXk:DHt1/+QUXMCQYjC9KCcNpl3S2s5oAf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/P.I. 90263DL.exe

Files

db68ee20995fd5efb622a2517a2d623f7894cfaf34827d233d864622ae54b143
.zip
P.I. 90263DL.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 869KB - Virtual size: 868KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ