e-dekont-20230208-[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e-dekont-20230208-.exe
Size

256KB
MD5

f69d60e8509cca1b101df405c9219046
SHA1

d92e04239dbdd433efd09c51cc2fbe1acd12b09f
SHA256

3a20b3679e2b2f554b42692c159504b541ae1e7662ecee964c31ca5c19934227
SHA512

9b6a710582e6f582f4b98cab30e72f39df7239e4f0dc9bc86585bf2705d3f9de9a5eb0feb290e1bcd405c4839a1e57d7980bbcc41fd37298effed8d8f6856a59
SSDEEP

6144:8MrGjgh50vpMJ35cmm59y3gJPJG0Os3C7kttl:8MrGjgh50v859m59yV0hCoLl

Score

1^/10

Malware Config

Signatures

Files

e-dekont-20230208-.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 696KB - Virtual size: 696KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ