Koh[.]exe | Triage

Submit
Reports

Overview

overview

1

Static

static

1

Koh.exe

windows7-x64

1

Koh.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Koh.exe

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Koh.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

Koh.exe
Size

33KB
MD5

69ce65ba9092d41bbc1a06f74cd3d958
SHA1

a3c0735a68fcb9fd9458896f0e61015d3940dea1
SHA256

0017b4f86f2869febc313c426194c1471ce116af28dc2b4ef9d2c6a63cb313d0
SHA512

406be1bd88298858302399227abfa1baf8f78918eff7065d69f628ba561e996a3137358b2c538595f60b0309bd7e9d7b816c4262d43c608be2b864e6c0a8c2df
SSDEEP

384:F5sWcTNEQyFnp+tOU/KoqH0LoIPebA5XeRL/9qhSxSwR94vZs+IBVX3LYidSVv4W:n4HHtOUi+3WiQ7X1M8Z3L6v4W

Score

1^/10

Malware Config

Signatures

Files

Koh.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy