Kkhxrpn[.]exe | Triage

Sharing

General

Target

Kkhxrpn.exe
Size

337KB
MD5

3c89ffe915cf71a55fa92e8465af3fc4
SHA1

d7e900da0434a8df6dd79081a6386eb05bb9cc44
SHA256

d928323519c2907a2ae9fa66d44ff98d43fe3ccb8b989fb8818a72847e8ea616
SHA512

6e8abf6bf7fe71579ec5411394421f4758eb48eb8ff115290ed84c168b614c3930875804920bb045c3df183824fc4849d65067afa5cd0574883d990316cffbff
SSDEEP

6144:X/ptp3HU/kZESbuZSZJZIsnvwkc3A5nFppRMfZH:vx3HUeESISZfewWfZH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Kkhxrpn.exe

Files

Kkhxrpn.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 329KB - Virtual size: 328KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ