rc7[.]exe | Triage

Resubmissions

07/06/2023, 17:24

230607-vy4t1sde64 3

07/06/2023, 17:23

230607-vx9zmsde53 3

Sharing

Copy URL Twitter E-mail

General

Target

rc7.exe
Size

306KB
MD5

882cf8b70dda1fa0f06a6cc3bb932fc3
SHA1

c9314c7c8cb3ab0eb12a83ed43b4631ffa464a16
SHA256

b3e7ca528d739366ec93fe94eaec8d928e681a67102b80ef9d470c71817e6b0c
SHA512

75d97fdbdf311f6cd57dc65080988c73249f3f54b67bb2ac0dab5d89c7d7d6873501b015773107fe00c56f781ab2ecbc098aa7aa5e9d56fff1bfd8c99ba1ce7c
SSDEEP

6144:NloZM+rIkd8g+EtXHkv/iD4TUy/H9rI8jM67NokRKTb8e1mzi:PoZtL+EP8TV/H9rI8jM67NokRYx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
rc7.exe

Files

rc7.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 227KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ