DragonKMS v23[.]10[.]20[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DragonKMS v23.10.20.exe
Size

689KB
MD5

225e3336a4a6c0c44d1aacaee24701e3
SHA1

6231b6fe73acdf964d68f7aed87e5a1c59861308
SHA256

276d522729319fe4d489ac773e863ffd611850ea44c14061b857c2b090a85870
SHA512

d79b0fe423a90b8ea422daaf4e52c789462378dcc0cf12ed337bda617933efe584383ed74cabca59bc08441d2593e256abf4340cd8c5e27df6b8892f6d8614e4
SSDEEP

3072:mB+Z8u+BwrSdsHuxgbCF0v2ZIDq1fkKhojAROnM9K7iVE/Gppz8mJQEC+uJgEexj:EHzkQQQQrF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DragonKMS v23.10.20.exe

Files

DragonKMS v23.10.20.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\VS\DragonKMS\DragonKMS\obj\Release\DragonKMS.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 587KB - Virtual size: 586KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ