Setup[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Setup.exe
Size

11.3MB
MD5

7da6ddbae69e4e3a515de7baad789a0f
SHA1

f88d7490f713a1baace90ce1081240c5e3e86a9c
SHA256

4a7a0fc080ae4ab4c00e74421126bfcbdc8666aec3c09ffa0363b95fe75766e1
SHA512

aead78f225c24880c223ac116ee8d71f0b60636e5e140842902a8eb31c7befccb2f60488f24e527791bd46ced5fbd738a4c9c2bdad9f1aef8950f15a9e3184ec
SSDEEP

6144:YqH1JfxrvSym5jXsZ7W7JKvALumXD9nHwv:YqzRvSXbmg8mhc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Setup.exe

Files

Setup.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ