HWİD SPOOFER[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HWİD SPOOFER.exe
Size

9KB
MD5

e508b46a21c4d4553c7177dbfe1c83ed
SHA1

00b66c06bac75081c80ac6b90b09ad52b3bd7154
SHA256

895d0222e0f0fe23be9aacbe1666df0d1b1a8e13207ecb5030586fd5c9e25aa3
SHA512

e92e5b997c9cc79618193d795a7ee95da2af6b40917c7e257b8d7ae8a05cabc6c3b3d449ec272ac46d7417d17cc836028bd9c179efe07031a38f2b3b4ad1670d
SSDEEP

96:ZX7JPgs1lH8kAasNzGdtFwbp7Xc1o49JtzkcIL6DlwBjeTGMtzNt:ZLVsF+Fyp7Xc1o49zzHlEeT5H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HWİD SPOOFER.exe

Files

HWİD SPOOFER.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ