hedgemodmanager_9f441[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

hedgemodmanager_9f441.exe
Size

17.8MB
MD5

b917bb8e92e1ae9ce3e3a18144117ba0
SHA1

735816f0520d6fefd576e13564ba78488e469eb7
SHA256

75f2001441f2bc371574ca41f4c6e7f2b3e6edbdfd5aa55d1454d7a2551c294c
SHA512

d57e12f201e6857c46f1719954e6b56f747751f86be66df57195bb6a7b0eb6bd34beb9502a83a75ea86a46ebd5ba731d0bc7713fb66513684f37b871aed39957
SSDEEP

393216:+DHfjX5l9eKHOLqG7tyT+nnQOJRCw5nt0cIR+e2:+DH/sKMyinrJRCwxva

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
hedgemodmanager_9f441.exe

Files

hedgemodmanager_9f441.exe
.exe windows x86

Password: a

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 17.7MB - Virtual size: 17.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ