spoofy_3[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

spoofy_3.exe
Size

112KB
MD5

f8cba528ba3d98ae9c0e92077cfbd83d
SHA1

6445351574c7e49681154646dbbf48d9dee422e3
SHA256

22c0b8695e015536eb3c98613a3cf83e7b0cf6005173bbc8a323aa55f6c7380d
SHA512

e07718f323f49fba186a5421348e986ac4fb0cbc4621b350d7e890a82ce3f062c5c7765bc64a49ab51e7e6d3692235f2ab9be7d325e17370a706f08cca18aba8
SSDEEP

384:QX/XNbp++qVVXXvVSnunrFeiDeQ3ioz+wH/iiiiiiiiiiiuXCaCl:+NbpLCVXXCun7bG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
spoofy_3.exe

Files

spoofy_3.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ