0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10 | Triage

Sharing

General

Target

0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10
Size

2.3MB
MD5

73b6456450d11b9eac05b4e58aabe8a5
SHA1

0074cd03e2f02eb1511046b1489190973adf6f34
SHA256

0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10
SHA512

5eb7cea71b0b77e9645a66acd739ae9adc8ced2818edc38e5d8827d9f431657f2e8c7297ed43f37a47216c78b459bcae4015b9396321f57d2960d6989ca7e328
SSDEEP

49152:m/LB+rYPZ14KMqpvK0nyckxBThGcfQj9wpF3:m/9cB2Fu/pF3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10

Files

0af5c49133422030899cfe674dfd6e26301237f2dc5f34e52db1bee2187d5b10
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\teres\AppData\Local\Temp\Report.A66214F7-6635-4084-8609-050NK772EXE\obj\Debug\five_toolConsole.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ