WagasService1008[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

WagasService1008.exe
Size

138KB
MD5

60c59712afb5a2edc5d3972ebe056335
SHA1

71caa02e1987112ebae2105148e4e79a56c151f0
SHA256

cd73d141654a2736bcd3ca32826eb3f599a5f831255f0c3893de58f24e0345c5
SHA512

1cb591f52ef4d4fc59c42fd81eada62a42dac249a2b383cad5339da5f0b68ba970f32944f858e0c4e6f3a822b29df4d652a459530d7b47d00fc6070d14ccb896
SSDEEP

3072:kYbUSjK9ZT2lNU++UOMhbJWF+K/sW3Au/p53ovn:kYbUeKzT2lNU+dOcJw+K/sW3Au/p53K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
WagasService1008.exe

Files

WagasService1008.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ