Dgc_se[.]exe | Triage

Sharing

General

Target

Dgc_se.exe
Size

1.5MB
MD5

36afdb6136aa3dda6484583cbbf674b7
SHA1

0e2378dbfcf0921d1ce2690a9164f3170ca2cb47
SHA256

c27da32c7d176766975f8e7aae3e011efe1522336527f48d8ee4bcd28ca1922c
SHA512

dae854e7a6db812e93d733195fe03c863dac3f78d4fa44b09ce19a3fb907ad2f81eff627e3933d81ea1a2b0079393c79a91296c0696e675c3d298d8a10c3ec04
SSDEEP

24576:DFrr+pkCzK7/SMD2mqs51jR1s7MnmTaCYDBUU1bw5ekx1x4/b77QXWsmCPW4mq:Dh+pkCzHtmqsPE7I40dwekx12H7I9P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Dgc_se.exe

Files

Dgc_se.exe
.exe windows x64

0f160c1ce25c742b64d1ff7859ae3f1f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA

msvcrt

___lc_codepage_func

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

user32

GetWindow

advapi32

RegSetValueExA

shell32

SHGetFolderPathW

Sections

.text
Size: 66KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ