UpdateWebConfig[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

UpdateWebConfig.exe
Size

22KB
MD5

5cbf8b8bb0c32a028ac05001347d4a33
SHA1

6d80b23d8d34356679186f450101e697168577d8
SHA256

bac706b71377dd99af8182042dedf532ba71a521c9b5bcdea5ab612aa0d2beea
SHA512

3cc1dad222b359f39f9d48153aacfbd8a5dc6ad7d036247e72ce2b7999a65734d28f8b8caa8f8076165ceb092cdae0b3bb63efd8a66df00ce1570b0e26e41c1a
SSDEEP

384:RRvBcB+mUK+wGuGYG8392QHSpdMRfakQEj5qF3QXbCuRYowOyw91Wwa:RRvBTbhGGUqw91Wwa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
UpdateWebConfig.exe

Files

UpdateWebConfig.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ