Update[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Update.exe
Size

17KB
MD5

07b29ec0b8de08fa015bdba3285ffe4b
SHA1

63a03b4636cf228965db01de5f92978c279b22c2
SHA256

d39e1a5df848b5df04e625ba5619770387a42c9444ce3f2a7309e271e6f7c016
SHA512

27431a6f75a7c2cbd780d9631761f8f4c6644694ed314c0b95fd89cce2e4f50947315fb8e158e7b508543300493470137a3022d9bbcdfa7e0c660f2684b0c08c
SSDEEP

384:VsyL8JkFb5+K9YKRoi4K79gimH0AEtjvfhbsYcZtj:myskh5XYsomFh4YcZtj

Score

1^/10

Malware Config

Signatures

Files

Update.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ