1999X[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1999X.exe
Size

622KB
MD5

a5a2a0d91846758f69a46e3f2d1b4a56
SHA1

0d73669072c0be23945faa8bfca649e14c8839ad
SHA256

7c0eba67d636a5b80bf8de875159c81bfc6d3efaab6cb3a6902f51e1d186d329
SHA512

2096c099d41a14d96939e4f25853c4bd9f927ccfdcc5dbfa48b5e26c2ca7663ad4bbf4c04d9c19f09a57960f3db1f7c413c8e0f9ca0b1da7ca4c20ebf05cd3e4
SSDEEP

12288:Mv+L2m3sBktGU3luWebb5wG9V7EYvpsWvvEnAH6jK63VkG7N4/Y:MtktGMluWibWXYhsWA3Zx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1999X.exe

Files

1999X.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

$,$2/kO
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 537KB - Virtual size: 537KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ