Detective Hackers #BurHan HacKer[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Detective Hackers #BurHan HacKer.exe
Size

572KB
MD5

f8c430c0d9182628d4ba0db03c2ed844
SHA1

5eb9b3b918da1a66d3dbc40986ee8e96b1a066ea
SHA256

2c6f9b27c6219e22688cdb2716167d5f363ebd6e0081777211d778d54aebf3b0
SHA512

931f6427385c5aba6622be5c0eb3d3a53dfa788e7bde3d2f13b0ca0777f4df84277914cd9e2b2c544edea22c7b9f8897b4d97940d325e26c0a176c9b854e16b4
SSDEEP

12288:UMF9RDTBZv/3Abi6akt6Qu3wobhlAjVAj7FAad5HSms:V9G3ZYA5AFAayT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Detective Hackers #BurHan HacKer.exe

Files

Detective Hackers #BurHan HacKer.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 501KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ