e-dekont_html[.]exe | Triage

Sharing

General

Target

e-dekont_html.exe
Size

620KB
MD5

c82c075375552caf61f526a379125a21
SHA1

52ca0075bb3e8aefd8c614d6b1801b08e832e7b7
SHA256

a84d6a658ddfea2bf155df47943d616f4dce09d55bf7abc2eac1f1485be7bb48
SHA512

e7e516c74a23d65315b1ab62ea7b559cde29c4ee5b866bd8ab35844f535b55a1bf52ece8ec525152eadaef5333bfaab06e5898c24fda5e44539e88ce14a8d951
SSDEEP

12288:/AfDuHOXq2o6dQ0kGSI8qUfSpcgYKhLURBX+3g2wN/axkOUWahznI9l8tj70:/gU2fS0q9qpc5UUTXVmxbUWa30

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e-dekont_html.exe

Files

e-dekont_html.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 610KB - Virtual size: 609KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ