Aworex-CS2_1[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Aworex-CS2_1.exe
Size

4.9MB
MD5

b5589fc5da69684b181a117acfdaaf94
SHA1

f88b3fdf77d979ab4ae200a58a031cc246235e40
SHA256

b79f8f0bd1683ff46c02d51110c1aec19007726ee0a573e460c83bdd550a1ea4
SHA512

feec183991dce94dc5fecff99dd6607847922a7fbba0fa9404120e525e19e1b818e67ebc61019e36d2c7a1d49bbd1495534cd5dd64cb7e18cb7e8ed5017f6798
SSDEEP

98304:U5EFo9oC03FuoKHaJbo0SuEnxjs+r7dIF/KF40YOmhZmcHj+S:qEm9oC0SH0rSxjsqdjGMwS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Aworex-CS2_1.exe

Files

Aworex-CS2_1.exe
.exe windows:6 windows x64 arch:x64

Password: 1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

bpx0N
Size: 4.5MB - Virtual size: 11.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

tIMBj
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zITF2
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

qzSjt
Size: 360KB - Virtual size: 359KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

czBlE
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 24KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ