bsEmcoM5Se[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bsEmcoM5Se.exe
Size

895KB
MD5

8ae5dbe560d1d1a03dfbda1606966641
SHA1

d553477c93528c2d677b74f282b5682ee725a754
SHA256

7413b443c8001f9a33ae4e01615ead6e5df41d8e90d3647d773cce4bb3b068bf
SHA512

a1f42cdfc422c0f3f7c4c1d504841c9dc280a08dd799d266d1c27afb7fc5ce95330b174f80bf1e885cc6a71f3c6a1fb5e4465db2b6f25953d8e368a1f20bf570
SSDEEP

24576:l96h36HJ77L1K5LAwN7lbD1r86I7xk5f:lg1Ck8wN7rr86I

Score

1^/10

Malware Config

Signatures

Files

bsEmcoM5Se.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.KA*MQ
Size: - Virtual size: 619KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.KAjnr
Size: 893KB - Virtual size: 892KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ