InitSetting[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

InitSetting.exe
Size

1.3MB
MD5

ac5d8c8588bfb064406dcc65b2f0bbb1
SHA1

0f157de678e4349d1bae52f849949dda1d48b02e
SHA256

1fd2cb7ddff34c6bf0a9d923c616e4b606c1fe22a46003a682a5c22ecf876443
SHA512

6922a7e2139a187bdeb7758db079e8b7be38c20da6415a9a3759bbd8add395701c921f63f8bbcedff088b3d3e77ae99aae2f47892ef30d6985283841eec95144
SSDEEP

24576:acmf0iHbbns/obsC21Cb5IbdahtN7f7AobQj:acI0i/3bg4CbdAtZNb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
InitSetting.exe

Files

InitSetting.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ