filooo[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

filooo.exe
Size

47KB
MD5

5d80235ec8c6233c99e45935a47ed4fb
SHA1

3612fe9391b124b79b8d90b40279ad2f124f3278
SHA256

215da2bbbd622b4762264fba31bd551f71157e95fe8617e5b18e4ba72b2a7374
SHA512

495618dcad68a72f23a6ad3d08e1337911f5c7b5e7726857eab052814d7501b6e3604614593b3b594591bada415b296a092cd77636c37ae10c950d5f819bd254
SSDEEP

768:TZjSUvwGNx8IvkRYR4RhYNPKiPrPoD/O/LFUFHHA8nImp/:TZhpxTvkRYR4R+IXD/O/LFSHp5

Score

1^/10

Malware Config

Signatures

Files

filooo.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ