DUrtA5NJvAcOoYZ[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DUrtA5NJvAcOoYZ.exe
Size

670KB
MD5

7a07a0be221cec3a5178545c0580dc55
SHA1

48e6ee652595016e6df29b0bd89db2f800559be1
SHA256

2b0e3076792cbaad1206b064b9f0dbcde8b22918d0063233c8d354f25ec5285a
SHA512

bcd5929cd2cd061d4f7bbc662e739573ac3bec58f857b90adc9e9e6afcae0e535cec2d98db46f7953f7da9e9fb72039e43145072abd2d58744548fcf7738aaa5
SSDEEP

12288:chNh6sxTA6qNhbj3bGnLEO3YuHzUqpgWgqTwUCaxGVzZLsxx2xf64/8ZWAjXhHiw:cDDxs6gxbGnwO3YuHzKWgqTwPaxOhsxH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DUrtA5NJvAcOoYZ.exe

Files

DUrtA5NJvAcOoYZ.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 661KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ