Premium_Proxy_V3[.]856[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Premium_Proxy_V3.856.exe
Size

1.9MB
MD5

90f8c0aa44c551daee130b63f5a89500
SHA1

02c72e04803e181c8b3618db9f25d5fce04282d1
SHA256

00fc0540f80070a083ecdcc6404d25b00042e2da7a37ccb6301f43998e1978e9
SHA512

aef570368b601ea7a071066e4103fb0c38be93e3f1190b8e42ab18401f1f3bb07b0d72529acd08ecce6d85edf2d1ad7e044cc5155afda7cb2b332c8509076030
SSDEEP

49152:r2vLt0WGFtFhQiMbsQA3APp2PnQioUpJHWO+YqAFr:0p0WGLTMbsQl2PkIJm6r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Premium_Proxy_V3.856.exe

Files

Premium_Proxy_V3.856.exe
.exe windows:6 windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: - Virtual size: 5.9MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE