facilitConnect[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

facilitConnect.exe
Size

111KB
MD5

d9dd29f10813806925c13c74e6efd941
SHA1

9e6878d066138303e22bdac3baf5c94ba05cee98
SHA256

6b9dead325a5e212d00cd0fbaf6c7a020eaac523fd8b9067957654ca94a7b7f8
SHA512

a7de44429c3c7fdee1df828e26c9dd587f740c8aff36c9d1138813ce501c3a79e9577e83fd4dc605938275a1c80ca9cbb18b46f957a112676f44e92d05349030
SSDEEP

1536:E26KCSQKEd1p8OK+twRWPsiBOYuYzIdifbUmvDt4yHS8ey5XiSMfk0Pxu/P8UN:E26KlOrSWPRBOY/lviyyjylEY8+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
facilitConnect.exe

Files

facilitConnect.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ