ohoyeczx[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ohoyeczx.exe
Size

794KB
MD5

6a528cfff5999cf090f5794fc86cadcf
SHA1

d8dd1639f879dd0c6af6bb308d4558e42c0979f2
SHA256

6a0087305c0345b6a7323d488f9d9e57d0ee4972ebb132b89f1192994b8c78fa
SHA512

1e2e4a8099f81d06bbbf772263fef78b652d9d788d957fff8700d9ec7294cced964962411114333ecc0365f30b9ed5b02bd21e43a214d10bcc03c9f44732fa9d
SSDEEP

12288:pA5iB0Opa8o7k0yMpuNzrq5hhcSqVRYIwHott85c3t4JhZ:pA567DdMgNzrijewxHinID

Score

1^/10

Malware Config

Signatures

Files

ohoyeczx.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 787KB - Virtual size: 786KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ