QPatcher[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

QPatcher.exe
Size

51KB
MD5

551d83b7986e884ed4c6340c1ff180f3
SHA1

99a60faff27fb7b67dbc040ffaa070ed740386de
SHA256

c242441a5cf03d06a68893af66c86413d5563db9e11fc92ee2eb1e31062efebf
SHA512

0f2a39985bc7d1eaac7d10ba198ef4c6fac5f88351605dd773d4bc5413b80675a804766c47b6f55a4a7b256bb31b17daed5d88525f4f79cc73d42453361c13ca
SSDEEP

1536:oMxvXEosS85zZgCdREFpc3E+F0PGRrWTApZvLRtHHM:oMJEovyNgiwpcHy+sWvltnM

Score

N/A

Malware Config

Signatures

Files

QPatcher.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ