xZSCRQp4PA36[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

xZSCRQp4PA36.exe
Size

95KB
MD5

cc924617ea909bd2b5a5e49821452f19
SHA1

479528bce0b13d82ff4bfefaf3a55c69cc2a7a37
SHA256

c66d6fd0811ac10bbf4532c225f2a79516972f9430bb1707acc8f6cf6027ae9d
SHA512

f274ce43521e6318f91fe8bcd0dc64c5f6d2185b55248368548c97e033690a8ca176f165dd5262e024d62d271327f43f0bf06fe4786ca68041c63c2e10b9fa9e
SSDEEP

1536:S87oX4ubYkhJ5DXJ9IQsKO8cEk4hAn7FfY29F9MThAtcifUf:S8y4YYujXJ9IQ3c9vA29F9MThAt5q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
xZSCRQp4PA36.exe

Files

xZSCRQp4PA36.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 578B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ