loader[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

loader.exe
Size

2.7MB
MD5

d8117270bfb55476505812490804c8f5
SHA1

00259e02a734b711953915d5bf28f9fb2d2dbba7
SHA256

637c41c005a6b4ff6ae337acfc6aca35b0511cb9751644c5d7183cde479bbf4b
SHA512

9aad61324b3197b2d490c35f8bcb83406ed123ae94a4ddcf8634e85ada1dfefbaa35b4dd735df1ddb26d3d769a0ab65d0a42aba969b31fab5bb3ab7ce823ad07
SSDEEP

49152:SxhEP9BGX3zrQ3SuwOl0IynqOjgm1KGP2mcTCRwbsPcR27g1OXBDQJmTieyZ5+zp:Sx2jGX3z83bKIyqFm1z/cTecsPA27NXf

Score

N/A

Malware Config

Signatures

Files

loader.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

s0
Size: - Virtual size: 4.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

s1
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE