EMVStudio2[.]0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

EMVStudio2.0.exe
Size

7.2MB
MD5

0184429a9ad1621c6c2b0cf1113eac3e
SHA1

f51b2d3552db262e965034ff3e4d3bb1330edfc5
SHA256

59c0038e358be524c0d00c824bedd06d5203a08b2373118b862fbcf9b34ee496
SHA512

e8f4f0445640725d4c6f97396eab8da8cec141e048c86f15ce588134b14b09cce991fc8f970df9396b34a6158d7291d56e6e6b7232ceeda0f78071252f03730e
SSDEEP

196608:GKa9jMV40/yPJpj30BcIHI2IUykSIclWZ7vS79:yjEUJpj30Bc1sykShy7K79

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
EMVStudio2.0.exe

Files

EMVStudio2.0.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7.2MB - Virtual size: 7.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ