modest-menu[.]exe

Resubmissions

06-12-2022 02:26

221206-cw2b1agh66 10

05-12-2022 20:01

221205-yrjr2sed5t 1

Sharing

Copy URL

Twitter E-mail

General

Target

modest-menu.exe
Size

3.8MB
MD5

5ff3e364b2c911a3a504db8ca8b357af
SHA1

634576bc4beb40802faabc2832bf8966746d33e5
SHA256

086cf9d70f774248002dd699663b21ffbff861b44068a1b468ae721b2813cf7a
SHA512

9b6d4a06468818c707164c3e5389410e83cf10baaa1a4d8c5ea573681c241b565eef4ddca96066b0cb5a1277ce6ce7eab3416470dd7055d803f8cbe93af43b72
SSDEEP

98304:73OMOXyx9YfGxGb1sPW7UHkvLw5mQTzd7W+HtdIOoQ7pCl:73OMay4fYasPfuL8ttdDoMpO

Score

N/A

Malware Config

Signatures

Files

modest-menu.exe
.exe windows x64

25efc395de2682ec2e29fced73f1e93d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

WriteProcessMemory
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

ShowWindow

Sections

.text
Size: - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

G$C$GZX%
Size: - Virtual size: 819KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

J$S*VU)N
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

NKDRAEYW
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

OCOKCFBT
Size: - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.$%TRWEF
Size: - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

QD&I_%Z(
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BQ_SH$^_
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MY)LMK(^
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$%TRWEF
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.$%TRWEF
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$%TRWEF
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 469B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

25efc395de2682ec2e29fced73f1e93d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: - Virtual size: 180KB

G$C$GZX% Size: - Virtual size: 819KB

J$S*VU)N Size: - Virtual size: 10KB

NKDRAEYW Size: - Virtual size: 9KB

OCOKCFBT Size: - Virtual size: 244B

.$%TRWEF Size: - Virtual size: 480B

QD&I_%Z( Size: - Virtual size: 2KB

BQ_SH$^_ Size: - Virtual size: 28KB

MY)LMK(^ Size: - Virtual size: 5KB

.$%TRWEF Size: - Virtual size: 1.5MB

.$%TRWEF Size: 2KB - Virtual size: 1KB

.$%TRWEF Size: 3.8MB - Virtual size: 3.8MB

.reloc Size: 512B - Virtual size: 168B

.rsrc Size: 512B - Virtual size: 469B

.text
Size: - Virtual size: 180KB

G$C$GZX%
Size: - Virtual size: 819KB

J$S*VU)N
Size: - Virtual size: 10KB

NKDRAEYW
Size: - Virtual size: 9KB

OCOKCFBT
Size: - Virtual size: 244B

.$%TRWEF
Size: - Virtual size: 480B

QD&I_%Z(
Size: - Virtual size: 2KB

BQ_SH$^_
Size: - Virtual size: 28KB

MY)LMK(^
Size: - Virtual size: 5KB

.$%TRWEF
Size: - Virtual size: 1.5MB

.$%TRWEF
Size: 2KB - Virtual size: 1KB

.$%TRWEF
Size: 3.8MB - Virtual size: 3.8MB

.reloc
Size: 512B - Virtual size: 168B

.rsrc
Size: 512B - Virtual size: 469B