PasteUp78[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PasteUp78.exe
Size

2.2MB
MD5

061acebf18c914121da73623f1b4fb0c
SHA1

09b4e1e638621dc9562b13c4bac918f619f467e4
SHA256

90b5dff495fec267bbe005b924aaa34fcfc73b9067be35106ce797872f45c789
SHA512

e7945bfc5d5a09f6b1c43fe70c1a1feb4c0390a30d638ac2b282dc7108583ad2395b6a30a24062fb098afa33fb23061503a18f27577140a77d1514e4dd1024b8
SSDEEP

49152:FnaaKmyX6gbaaKmyX6gBpCZHOvZ3CJc0:FuKzKGpEHOvZ3CJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PasteUp78.exe

Files

PasteUp78.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 484KB - Virtual size: 483KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ