SecuriteInfo[.]com[.]Trojan[.]MulDropNET[.]68[.]21577[.]7665 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.MulDropNET.68.21577.7665
Size

608KB
MD5

283d6b652f5a3492e61b4ce7530b7065
SHA1

c0b0a0f4a1f52bb17d04ce78dc7f1977732ce913
SHA256

5ea704d5050d0451c278d0a8728b251f71114e042f4bed6d2180509bc2955aad
SHA512

2fb08e3c6614edf1ac24840307f75308a62cbd60404897185924c172fcc783b3939ec1b78910b829d6dfa7ac490d230bbd4920a2dc56eca2d7ae1f06f5f7ec05
SSDEEP

12288:U9725FXu/74tZ/hHCgu1zZ2tUymmArfNbsQtaL7O1ROXuVVEw04K9r2xf41Run:7E74n/hHCfVZ2WymmUbeL7O1ROXuv30I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SecuriteInfo.com.Trojan.MulDropNET.68.21577.7665

Files

SecuriteInfo.com.Trojan.MulDropNET.68.21577.7665
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 599KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ