AutoUpdate_New[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AutoUpdate_New.exe
Size

651KB
MD5

f565e2f30ca2bd493761a62e31d944db
SHA1

936801e0cbcfd50fe2674c9baafbb4a52d954ee6
SHA256

1d10515b2ac35e8f70632e50709bf9d0d0e0ea34c5b5031c5a046f86a8e3414c
SHA512

911304df80c85227b8795a32449a5d7c52e9ae9e90f52fedd9e3a14760a6a4166f5c46c1239057858ff7988a101f2313a6eb52ec58776f2bb8175e2fb8523a69
SSDEEP

12288:+KS6F0Ak3CPf8fcRvPmlwFbhklJrvFR2rg+TpEjtM5GDnv:+KL63CPUfcRvuBlNYpEjtM5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
AutoUpdate_New.exe

Files

AutoUpdate_New.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 649KB - Virtual size: 648KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ