4o2gVSxWoh4GNBn[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4o2gVSxWoh4GNBn.exe
Size

735KB
MD5

aadf0cec059c6bea43390f4cbda89a01
SHA1

5d14c29e1f9b80de80b4e5e17d688d02c0652ea7
SHA256

fd6a88c61e8b5b68f3f70d8aab48dabdfc21d96d81f823647d310ccbe1fd968a
SHA512

72360ee3063cc53de3eb9899670b0e216fc8cf007ac12a43d88a2b156a1b4a9b24b1c3d8a0340b775700c8cf6a769983801047cb01fc85398ecc0563452a18fb
SSDEEP

12288:UlZfTMVrwn4CjD7KGDCXBt9yCdBKC+Eo2Nx5O17cOfejPSgeLbT7lYEAG:UXLMV8VIxt9y3Zh2bgyKbT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4o2gVSxWoh4GNBn.exe

Files

4o2gVSxWoh4GNBn.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 732KB - Virtual size: 732KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ