EasyConn[.]exe | Triage

Resubmissions

15/06/2023, 02:55

230615-dejlased99 3

14/06/2023, 02:11

230614-cl9wdsce89 3

Sharing

Copy URL Twitter E-mail

General

Target

EasyConn.exe
Size

3.6MB
MD5

fc2842ad9baeba52803c3fb16dd95f87
SHA1

6cd033061a20a192ed0569c1befc086feb03f091
SHA256

3a14ea9470b1c715a0c38ebb588bcc0d5546e68a02a01b17cad520ba0b191134
SHA512

df5e5303d20a06891718ff6cacb9e15d7e3106aa7b299f4311628f8c9b50547fe0f745fd524492efd5a5e5ef1b1ebcb75b5ca4f4e47f2aa8d0a4f89ea4e3a587
SSDEEP

49152:9Cs7YDbu5IHjb33zxEcArGc6fwTuQ3QdCe4FI8SPG7QC0yJYXL0jj4C:9Cs7YW5+L3yGDfwA0/p7QjSd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
EasyConn.exe

Files

EasyConn.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 715KB - Virtual size: 715KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ