RebroLauncher[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RebroLauncher.exe
Size

1.7MB
MD5

c5e21b33d39e808fa6afd624df60f869
SHA1

780e376ddd308902a07c89d75a459f91e6ed35bd
SHA256

7bef3ef16dc117e15eef1b5abd965605b8b9d74f72c02ca8449e999c003686b0
SHA512

a3c92577d2661db49dceb8ff3ee512744940e26bd8168654ae88dc51dec3a8d405854d4a983c60fae4f831fc3f055b1222a6b2664583ec98158e33e5d5d4aea6
SSDEEP

49152:wZnFitb06Wy3yNmZMdsiRNct/QNT3Rb4LD5nT6Z:wZFCb0ny5MgCTBsL9nWZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
RebroLauncher.exe

Files

RebroLauncher.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ