Google[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Google.exe
Size

3.5MB
MD5

8bd62cf989212df71d19d5869ba9c540
SHA1

912b64d29f62b5b0b7c9f0713e27defb90b39e95
SHA256

60778ea32c399e40c2e177976ce3b733bb12a4412bd9f04e5fb56f3fa42e6631
SHA512

d26e0993a16c11fa9cc62e19ca6a1125b50e46021c19a04afab13f0d8c5a1f2e2880b5e644ee6ec67c50d311350db1dc9700cc4302c5fe0f45e79ac6b882610c
SSDEEP

98304:38M9r57ihYLLpdUT8Ir3hUG+0OlFdjPqh:38M99GcuQWh20oLP0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Google.exe

Files

Google.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ