injector[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

injector.exe
Size

740KB
MD5

abaad9ca52e18d295d260afde95e045a
SHA1

05ceb1e31111f70edfd710dd9eb926a8151b0907
SHA256

c23807bb4948027310ef17c83c7ba0e679ab0d5f5195368be254b21723b078b3
SHA512

1050b8d169187e65cc30d600a0a5f86cff1dd67ba9e2292a622cf1c71f2e95e5c9e2735ae16e66d31d223020b99f501d53c8aa53f78c1bb0d6c62785f5fdb36e
SSDEEP

12288:ewUSkQ1BEOi1SFf6OP6mO+8PIZVJok19z4pLTHbSIA2QFWqsnzNSa0zzX3goo:e1WBKoN8awk19zcLzbWANkzzU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
injector.exe

Files

injector.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

'S\ xN
Size: 257KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

'S\ xN
Size: 257KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 223KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rLEzGEis
Size: 512B - Virtual size: 22B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.????
Size: 512B - Virtual size: 276B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ