SamsungNotes[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SamsungNotes.exe
Size

26KB
MD5

b40a2655c987a5245451188469fef43f
SHA1

533851da8153eb38d4d228f82a777ba0b457b32a
SHA256

5dd02037a8789e05fec53547bd3fe186162f1c3e37ef574e32e0245c383bb512
SHA512

694768b5c566f4d9b38d1b6d8799d354ba03e2f807ce6b32acbfda2768cbf7db9eb042c5d85451518a8d67d4d8405144c64b0f45435f951afb1ef0c78f76a5c0
SSDEEP

384:TJN7UcnBvJQHb3Q/0Baxc8IcbUi+7SOQ6HMf82utc2Nu:TJN7UcnBvJQk2u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SamsungNotes.exe

Files

SamsungNotes.exe
.exe windows x64

3b874c51701b684b4858936b4e43688e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_APPCONTAINER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

samsungnotes

RHBinder__ShimExeMain

Sections

.rdata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ