dongle[.]exe[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dongle.exe.7z
Size

40KB
MD5

c101d23ea6a2e45342a878b48932954a
SHA1

644109b560bd2963fb0964a7765bd7dabf196f5f
SHA256

7fb818b5c802f647eb64756f4250ac8b97c9347b29b63462073dcc48b03863a2
SHA512

2da915e5357b1c7799471471bf184f579c93db9b586d3b7612384b7873cec60cd6980c18f0d56d8a8790f50ff69833c36e18d0fd82affcb4e37b83ec4e23e9c3
SSDEEP

768:HKjTP6QV6w5C5h0n4vlWqHU+cHj/oLT9Jl9YsQgFDeV/2ghW2f:HKjb1D5Yhq4vlWH+KL2ALgY2W

Score

1^/10

Malware Config

Signatures

Files

dongle.exe.7z
.7z

Password: infected
dongle.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 117B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ