SKHG00000900I[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SKHG00000900I.exe
Size

340KB
MD5

aeafbfa54f931879923632bbdf62892c
SHA1

b91cedb64b23ad5c1db391ca53d4e3471ad88bcc
SHA256

d3066c2afadce04f3170a237a4891fdf15bf2abe277a1153b0ee7e750a101420
SHA512

f8e482779355304f15bb759d841631a28f44047c3e9a06b91e61f07ef3fe8b45769738925f8a83b770e59f07e76104251bd7135a4d28e0c422c136ad813ce34f
SSDEEP

6144:DTFBekEYjeX+gpsL+P0DB68jFbGM88KPtUlojUeJ8a9rvQeo1WrhhBxRYy1+aePH:XekEYjeX+C0DB68jFbGM88Ailoj7xvQH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SKHG00000900I.exe

Files

SKHG00000900I.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 337KB - Virtual size: 337KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ