G0ULQF5Y[.]EXE | Triage

Sharing

General

Target

G0ULQF5Y.EXE
Size

755KB
MD5

c0f5fa53f7bbe7044e15a629780454c0
SHA1

d6af76cadc38591986a0957e21151538ae31e826
SHA256

4b24dc0c5cd3814a2f66cc07f6b826835bbdef20d3df40b457212f44e1d07643
SHA512

d217c6de5470727f698bd4bcb7f2a7320d33079bb44a0bf721dc0486bcbc111c08b88de1d8ff74ee0a74127f7726491e97d98d6c695b15989a81dff743007295
SSDEEP

12288:TZ0WWObWkasOND9i27HL98iDZJpRaOFMIl3gvvppgiBuQaYwIGEJrure7ZlGOW:y4uV5h7WqJZMIl3ZiBuQaYwIGERurkZv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
G0ULQF5Y.EXE

Files

G0ULQF5Y.EXE
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 740KB - Virtual size: 740KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ