e-dekont_html[.]exe | Triage

Sharing

General

Target

e-dekont_html.exe
Size

836KB
MD5

e6f77541569204ef682cb0c3f0c0788b
SHA1

b2564184449917939bea25bdd16858301e5cb397
SHA256

19c50b3c8e3c4e074f378c9df1f484ca4f79c49fb2310880dad80eb09433f2fd
SHA512

f1107706aa19df051b777781dcbe92df033cbd4df934160a40437faf3001c04108a0fc1ed517f7766939ba85878543371b2584b6202c1c622b832b7e3b2b9bc2
SSDEEP

24576:HMHKlI4Ftyi2Ifmmgg/zrG9UGYfpBhtD/:aX47yHdmn/zA/Y3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e-dekont_html.exe

Files

e-dekont_html.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 833KB - Virtual size: 832KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ