FalconX[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

FalconX.exe
Size

79KB
MD5

21a68f4c0b86a9be76691ece54bfe35c
SHA1

9fac023d558db15ce1508f80121ebf742df75375
SHA256

913e7f34295edb725b543df2b483a84416a47f98f82991383277f33d9dbe7719
SHA512

ed5b979f6fcddea94de864fb7d65f14368d6778b7e2a4f5c0544338d8f5abd14da59f880c991e3bdfc1a1e3d778de89d78ffb1155bbb9d2ef5da946efc6380dc
SSDEEP

1536:SSh4Y4kSvIjbn7AQD5q1z6rdRe46V/ggNJ0J0gLnLkCra3nxApXXHdC3CYhJBqdH:KY4VvIhYQB

Score

1^/10

Malware Config

Signatures

Files

FalconX.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ