explorer[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

explorer.exe
Size

1.6MB
MD5

d028a09d15ddebfa445aff1a7e52b669
SHA1

5d5647606fd19d71713b4c097e67320ba923e05f
SHA256

a87b894fe33dc8d9a919b39066cc7339e3088b8bcd3b0529f7e58584c8707721
SHA512

50fe52850b8d7693522b352011b714587fdfba145fcc5744d1560a57b19d03740689633ac28c06d08d0660c4b448cce5ae9825abf3cfee9bb4f078a0efac7d1d
SSDEEP

24576:WgfwZkh0jZUps5hqh5gg86hRuR1fxh1wcYbl/UJFsnlA3UfJlyxfdprKGzAq4q:WRCsMs5hK/86hUh9w/qk5lAXrjD4

Score

N/A

Malware Config

Signatures

Files

explorer.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ