kysG1rntx57OlS7[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

kysG1rntx57OlS7.exe
Size

483KB
MD5

b001f670e15c5c2a6bed78c04e0162c1
SHA1

293cd757b6cef6016ffd9f77b7c3b892dc275b8f
SHA256

bbb9a417f02e708434b3737c20a59fa322c15b170be8befed9167c2f5573f2f0
SHA512

541c1b560a3d46f9c3e2d381dee349b70554fb756d0241b789fcaebbf5ffe09723b90e0471113d4e9d12f7c115b1f725c0321e2421a21f3cd37e165a77ff67c9
SSDEEP

12288:cyB0wZFqCDiX1KdIgIBu8kDd7TCpRYmlwR4SZ+3x:c3mROX0IBKDd7TCDRlw4Sc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
kysG1rntx57OlS7.exe

Files

kysG1rntx57OlS7.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 481KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ