z76zeZ7L06PXIv4Kgg[.]exe | Triage

Sharing

General

Target

z76zeZ7L06PXIv4Kgg.exe
Size

692KB
MD5

3f9083d65347bc21eaafbb15e8a356a7
SHA1

892d1fab6381c6b23e36560e4a464bf075652524
SHA256

8f0a0b753e6080a664d1c1195293b28bc87212cbd2c89ec944fcd601ffeef73c
SHA512

630f027f7f1dabe71fbc0f5c01408285e43fdbbd057eb2911b7d4ef40892f7e3cfa80e38e8497d7991c6f44d1cead29ccba26f00d50aa22364edc4e4f6abfb4c
SSDEEP

12288:hgb3eD2TDI6Jx+dEPnkKYpKOGHr0K62maHvtJDj9nK9Rij8FwLm/q:hgb3eD2TUixhw87L0javLVK9Ij8F6z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
z76zeZ7L06PXIv4Kgg.exe

Files

z76zeZ7L06PXIv4Kgg.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 689KB - Virtual size: 689KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ