ConfigTools V3[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ConfigTools V3.exe
Size

6.7MB
MD5

723c455ef39a7f4e9f8cd08fdb24f5e4
SHA1

41df4725b546ab071dffbfeff9f3b09b9a309cb3
SHA256

0903b1539cc5ce0374f2eabf32f374f89809c2303ea41161c9108831cea5e970
SHA512

06e9977457c460d7ff25439f142f709d823646db04ebac35025b62d2a6337e6939fe5103d8c7d6be6c7104372ca25cf00ea2bc1d07680362dfb38ab61b793b17
SSDEEP

196608:WECX6//MTh870uEishMY2HiB7u9iyrNH1v60GiHbH:28EishMY2CB691rNd60G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ConfigTools V3.exe

Files

ConfigTools V3.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.6MB - Virtual size: 6.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ