neptuneswapper[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

neptuneswapper.exe
Size

12KB
MD5

8bf245aa000b61f6f48a29b4b0cfd48f
SHA1

1c6aabf09e5575073ac59c759b599534f7a0205a
SHA256

6c2ebd7cb554b8b6890c6a94ae447a3b2bf5e91df04a268d1252fd62092b1b49
SHA512

480316d7a9dd46d778bc8e09cfabac81d49d6e90287ee637dafe1a3640bbb3806ec1f84e536939e2510db36240ccf200654c31a4b119f8edbb85370dcf727cfe
SSDEEP

192:8Z1iKSmAKdtAE8j4gPLJlgvlEKZl/Ga6DXJ8JCDQ5oX:8ZniKjAPj4sgdJ+aIJRDp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
neptuneswapper.exe

Files

neptuneswapper.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tide
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ