Loader[.]exe | Triage

Resubmissions

31/12/2023, 00:15

231231-ajyn8sceel 10

31/12/2023, 00:10

231231-af35jsbfdk 10

Sharing

Copy URL Twitter E-mail

General

Target

Loader.exe
Size

13.0MB
MD5

b3924196c5a132d16b3b015addb9186c
SHA1

6034545e7306629fc5126511af3b8fca8f3c4f92
SHA256

ccd19bd388ed1c8084cf59c22c332e1373f6491bdc6192f7f334552f6d963415
SHA512

5fdba14562d39982c9eef848b8cd79e0a32d08cc5d630ff67e2a8c9d0fce08e05706f2390088a581b2eb273fdc87cf0e5b3661484be94258524204f4d3bdb4d1
SSDEEP

196608:kj87owWs28cOXzSzYotdcGRr3W+c8RZNj0VtXVXhVmq3fh9QnaZsq+25MtJ1/hPc:ho/sxXzSzYURbLJeDSA5qaZTEr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Loader.exe

Files

Loader.exe
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13.0MB - Virtual size: 13.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ