e-dekont-20230208-[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e-dekont-20230208-.exe
Size

705KB
MD5

1fdb0c0400f7771d33226e19783d7b42
SHA1

bee78ce160480b00be4bb90dbe7d47bab1878abd
SHA256

4f94afc9355dc8bf4cecef34b1e42063acd18ed7be1e67d6efd8d64d070abeac
SHA512

f61828e0b88526f34f7d2453102f7db37eb2d9f496bee7940d561a84ee3b81d1e317d034548f0c76d4eb7a6cf25012d480b98199b0cc7e6554203f21591ac5ed
SSDEEP

12288:8MrGjgh50v859m59yV0hCoLBlXhGIZ8rSpqd/LcCyQbytJLH3Tg8xx3GM:8MrH5A59EoLBjGw8rtDJbytJLH3Bxx3G

Score

1^/10

Malware Config

Signatures

Files

e-dekont-20230208-.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 696KB - Virtual size: 696KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ