SfQmc0MeZqpKXDN[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SfQmc0MeZqpKXDN.exe
Size

689KB
MD5

c44ae249835144e1c6dd5cb25e22fb77
SHA1

d3f43ebda8942e34877b8b0ec7abc57929e9279b
SHA256

a4fb4655a4df0927d8def8fa7e8a0f498fffbdb61858057619482bbbb4f5de8d
SHA512

aa0dcc0b6cfe96fd6c268bee86a30d73ab950e1cbfd0c0d61709c3f3bc2bb590f5802ab2f00199dd87f67d8c866aefbe1b486a8037832a09e0d02c8197610750
SSDEEP

12288:52/Z7s9OCfOG14GpxrK7e9fMR95igfW58/omcg2TGlUvGR+H3bVevwS:s/Z7s9OsOjAxDxMRviGe8/8Kl9sXmD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SfQmc0MeZqpKXDN.exe

Files

SfQmc0MeZqpKXDN.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 680KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ