UpdateApp[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

UpdateApp.exe
Size

31KB
MD5

0b05efc20f2469a32093011deb71f0b1
SHA1

1f9700767d59425ea7307b6e057e8a4f1aadd2d7
SHA256

92cbd846783b6f32d4ba6b2b41f19f2b600446035d7550b1f3422583d14dd43b
SHA512

bbc63fdf30fe5c99a5046f4ca387123514e95df4997cf014147a685e248ba31accec1908a55cbebce95434649fe66ba36e7ce4d413dc9ae57a7ce09736c2ee34
SSDEEP

384:UJ1MxzxpQudEtKxu6ZodT4OCZSYBPT90ZUr8E96kNIhyvWMKyEBwyjd8871qw2AE:Eqz37OiwT49z5f14TRqmv9gN5wYcEou

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
UpdateApp.exe

Files

UpdateApp.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ