Hvgszr[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Hvgszr.exe
Size

1.4MB
MD5

2def5669ce160fd9482d9ce90aef4ecd
SHA1

3f624f79531e9f23e305583692f220e035a6c258
SHA256

3d691577ce274503de0c1b5bb4b23d6a58df94af00478705a70c425309100a5f
SHA512

b6d42cf274701b8e117ce7792e9908fe0a804e591649a7a54c15d5e838fa1ad5eda946573b8edfa458387e076ca32ea494e71740e2b2ea742dc149a764356aa3
SSDEEP

24576:aaMJD8NiFOu3ZEhy0hDTv93UEDyR9LW3+S/QaNpLxSOuerXh55njJZu8lL2Q1eH:aa1NiFOHy0hD1zDklSbxSsPjJo8liQ1i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Hvgszr.exe

Files

Hvgszr.exe
.exe windows:4 windows x64 arch:x64

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ