YtVCrCwtmvkn1ux[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

YtVCrCwtmvkn1ux.exe
Size

725KB
MD5

dd94a04abf2a4038e02104070674f3b7
SHA1

e1d3426d3d090b9c1d80ceb1e673c5d7834f22a9
SHA256

c85501725c96d78ecd8fee67af11a0435c60251c6c63260edc47fb2e41f4437c
SHA512

d35bdec8287cd8744de5a002e53f452a9ba1d80856d0863746b94cc4cc64aed2956fe9ab0fb272d9ec5cd70c16de5f653bae3db8b496601472b1596304e55f55
SSDEEP

12288:g2iNsXDl+CslWk5FV59kFomcBtifBVHmrU5EkXuHa3cyaekhmgp0skn:g1gADucgmA2kXuAkhjcn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
YtVCrCwtmvkn1ux.exe

Files

YtVCrCwtmvkn1ux.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 723KB - Virtual size: 722KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ