setupact[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

setupact.exe
Size

1.3MB
MD5

8b435e3565fdb3e1048f667a0369c5ac
SHA1

0845f7fc89f5ef236c36461fd89c399f188d9bff
SHA256

dc7aea95fe29c06452b0a8fb09f00406aa507ae423a77c4f818a2c56ba335da6
SHA512

f3c3436b60384de27fe89e78eeab426ded82563df2e22d728e6896e2d591a952d874fdfee515e00b28c62c59c73ee6b4851082683996e389c9f194a36fea77f6
SSDEEP

12288:zGTs4ieRe5rsadaZaqF3TxPECkjMj+1u2XKHTW6M40vMnXZq/VrfTn7Y1HSmfwYS:zWGiZaUagKUBfJ2cU7JQFDuBKE6LZC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
setupact.exe

Files

setupact.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ