Aternos_FireWall[.]ZIP[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Aternos_FireWall.ZIP.exe
Size

465KB
MD5

cbb9af3a1ffa54f3c9283d817a5ea940
SHA1

7025eec1bf5de80c5e6d56c05b247bc7c3034a81
SHA256

d1ca6d352783888105d20726e83bf8e5290a060f651cc9076f4cb294d6003c23
SHA512

e495c403ac9dbee3c77427cdcf59191272b64ad43735105812b5f904d240c9c6f53cae7b5e5dd756e2e2c664de39dd1fc159c0fe9e5bed533b4fa798d651c9ff
SSDEEP

6144:3C1v9bjAua9cu00lYk66PWx1Xn3xQA7lUhcX7elbKTua9bfF/H9d9n:36JUDgk7Py1X3p3X3u+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Aternos_FireWall.ZIP.exe

Files

Aternos_FireWall.ZIP.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ