Envdir[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Envdir.exe
Size

67.6MB
MD5

a535ad11be8b1aac4b4fe9a7df91f041
SHA1

a98abfd7604423dfc7992e644a820565cec6a945
SHA256

103625cd042800e316007497004c957417db4d2697967c344d17bccef592d218
SHA512

8663daae09cceebea96ae54ced3a861b80d855b76a6b5ddc64bb345b91e059c0a051d8dfa2d319a8498ca66610bec655532440adfc8ddff9cc0541277763b1c8
SSDEEP

1572864:pZBU4vSG2SpQ+Hlc4DFF9UwtZ3Y9g6ikX+nfaxrz:pZFvSG2SpdiwtZ2ikX+nU

Score

N/A

Malware Config

Signatures

Files

Envdir.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 67.6MB - Virtual size: 67.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ