adobecs2rus_kg[.]exe | Triage

Sharing

General

Target

adobecs2rus_kg.exe
Size

81KB
MD5

b0d82e08cc01f3ae393225f4fc4301e4
SHA1

d05d19b887cb6a9e1964155070ce12f4044a7c47
SHA256

b3cc1c8c19425c879ae77d6c96475e473d767b416ba1b4a1c772e9d494076024
SHA512

0659611bcc321ebbebb64fda492926db08136704a88c7a305c8f1da87cdd7a28bb287c05d00511fe3baab6014340d4f0fa59355109205947d5f6510e9ef64a1a
SSDEEP

1536:kgT4mLRJOep7PzZohTssXxA9lS8RKmqBEE0z/owXceR1NShF:xlJOeohTssvAKmqBQz/owMQNSh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adobecs2rus_kg.exe

Files

adobecs2rus_kg.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: - Virtual size: 108KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 79KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE