CrashReporter[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CrashReporter.exe
Size

236KB
MD5

3cb09ecccbb0200243bfa1a50964ab6a
SHA1

4aaabfbf7a8784ba95e66ed492dcaa10d266f414
SHA256

24ccebd38e7470ccb9c46e51517db270d114d14a819434d297fca43be5513a54
SHA512

7a0cfdbf887beb9916988ed49729de90e5208424a3ccc358f852ebe732d220d593a90626bfe5d41334602628f883075c4674a8cfce788ca6c0e36f928f3a8a52
SSDEEP

3072:1qReugOxabpXeMlsZ/dcIK06sZj24GVgNxabpXeMlsZ/dcIK06sZj248:WgOxspOu5D06etIgNxspOu5D06et

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CrashReporter.exe

Files

CrashReporter.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ