DaRKDDoSeR[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DaRKDDoSeR.exe
Size

214KB
MD5

a26a5f012fb329ab6cfff1bb8df1fedc
SHA1

7c8927a336bfa34427d638c1b7ffaf0b7fcffd1e
SHA256

b30d2fb51e0fda71da0bf81660f6c1dc0a444a576f26339224e74149682f0f6f
SHA512

e65442208b7820494dc369ffe1b430d6aac3c9246dfd5390b3625ed36aa51725a0e6da0e43f1663120c0719e944c0033389a94c5c0e5fdfafd32ea9916dea3c5
SSDEEP

1536:O4lDePduP2Wh3ydtORH4nczOv4RZFrBvDukGIIH5oEJMz:O4lD9OWhUttnB4xBvDupIIZlMz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DaRKDDoSeR.exe

Files

DaRKDDoSeR.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 202KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ