S251YIBR8210[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

S251YIBR8210.exe
Size

663KB
MD5

d2b3d0dabd83739b2f04afa7cb372dcf
SHA1

0db0ff4659599d4397a73673a0ecf39d04c6920d
SHA256

d2fd1949ff48a2386bee257e09cbf97c6cdee8da93545c4d08aa43af0366eb2b
SHA512

387306fa7d5b7658ae7e9df76d43cd82fd79316c1b014b6cab10eac5d6e9f48abb890bf5169cad1f1af4c7ad7f53526feadeb4208f851738aecff6814acce4fb
SSDEEP

12288:rV5CcfX9KPRW60SzFmtKDzHr5P14NuhAYhS2u1g5NyV8ASWAdfY:RftECEnrNP14Nuu6/yVQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
S251YIBR8210.exe

Files

S251YIBR8210.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 646KB - Virtual size: 646KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ