FirefoxSetup1[.]exe | Triage

Sharing

General

Target

FirefoxSetup1.exe
Size

6.7MB
MD5

49180d1fcc2957b893d17da38513a598
SHA1

38464b605ba71cfb526b6127e49ea9299c6d2f49
SHA256

5acddc0a92e5fa345c615cd0aca286e94f0419a1758ac413334a25689a2c6952
SHA512

92beb42825597f0e2b3210c9f7a67b11407d46332fb3db8dc7af2b69579031d3a59bd36fce4e5c569da3f394b44585702073b4cba719a7f10f1b1035f92ef5c9
SSDEEP

196608:O5nv+zsdsMI5982TRBwBttDiJzsE15dU5yuSZRl51:O5v+zmsMIr82TrwBtAKCS36RL1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FirefoxSetup1.exe

Files

FirefoxSetup1.exe
.exe windows:6 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ