Cxfhvwlxcvo[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Cxfhvwlxcvo.exe
Size

112.7MB
MD5

656f1a1ce82ed8d7b3a98d5eb5b3694c
SHA1

906c880338385e6ef8f24fddf92d986ded45a3fe
SHA256

6d52a109f8e52ed518b965d3fc7cd7ba1d1a2c2c6312ac89f57cba89726cb296
SHA512

f12704d8faf67f717e3c46a5b0820c6d1456044f73ad9bf64f21734625bb08a2467b48fb7ca7986a51082caa13e60fcc2612b8862838b225ce9d178a37c0dfa6
SSDEEP

1572864:cRYCAfEEE9RwVTzmfi90pZg5p70XD/1xMZANOKta4NlNJ2/c7UMQlrAD2VznC5p:Wk1E94yi2vho5KsqNJWc7UMqAOznM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Cxfhvwlxcvo.exe

Files

Cxfhvwlxcvo.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 112.5MB - Virtual size: 112.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ