SecuriteInfo[.]com[.]PUA[.]Obsidium[.]26722[.]28173[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.PUA.Obsidium.26722.28173.exe
Size

1.2MB
MD5

ea1c5f8ca2df1309e41290e5e2e334c4
SHA1

ce53fef3de6b7c1ef5b0fc197aaccb501e21385c
SHA256

34f15be16d907b9d6ea12e988c7dd340f176e97c3ad991617000506444727e7c
SHA512

3d161b12774d6ba6b3ac37802ce1098006cbd665289aa7c8d11e4848e3510f9636a57c0c53b90715b825d861b786a1ece72abeddfb147406529ce5d0d7508c41
SSDEEP

24576:iI7wdCqxIEt9+oNtwDM0GAc/Nza0CUZPSrrAIsU3gJM8YDWOBDCcfXnge6P8Yw:D7wdfIY9+onw4bxa0AAO3Z8YiOBDnXg0

Score

1^/10

Malware Config

Signatures

Files

SecuriteInfo.com.PUA.Obsidium.26722.28173.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.pexe
Size: - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE