HEgub[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HEgub.exe
Size

1.2MB
MD5

93851aa3041447effab9c4178c374a62
SHA1

1b5060f8e713765b5c346a952abd8d0bc2fa3516
SHA256

34b9ab12c430ce458e3b1236115b18ca267b7876f853aa3e353c2e4d63300b47
SHA512

234519cd12ff58d4c02b8c555163c2f0d3cf903dc49d42e6a634c2b066cb875c54bd946911380180c614674cbbdcca841671ebeb19bcae4f489040927dc3201f
SSDEEP

6144:XTNTugPCEH8UtHrOtRxGLdu2g/e4uPwTzxj9:DhNbHdHrKGLduLW4uPq

Score

1^/10

Malware Config

Signatures

Files

HEgub.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ