WagasService10033[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

WagasService10033.exe
Size

169KB
MD5

f3153373ff32a9b693ff117c1876b757
SHA1

da1c36156b2da7d6b0a67d34041c56d19b493836
SHA256

496a2e2914ea93970324d85968ec847f1469d60d5c42e4813bba98907f289693
SHA512

2096369e425aab0675fbcee9166b569f710f939d78ca1f5bc5c6f96b069ec16eadd0f24f9f093a043fc1ce3e241cf92415f004e52009457fea992b7718e933e7
SSDEEP

3072:Iw/3BW2JW9LF0RytAMoeh2Bos4hIGJ+TUJHyQ+A8/9v3iK5BvX:Iw/3s2kKR22tKzsYJHyQ+A81

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
WagasService10033.exe

Files

WagasService10033.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ