MonowareNuker[.]exe | Triage

Sharing

General

Target

MonowareNuker.exe
Size

154KB
MD5

034001528822be7eb60525cef7ab58e5
SHA1

bdfc7fbbd6ec947b1afc24de1f9f12c0667ee39e
SHA256

f58153ad0cf5f313112e8aa72fd639724a361ebb920259f3dcbc782a14323639
SHA512

b1e4f8e7213acd94bcb7b1bd620db2711f6c2aaf0ae7c4a2444c81d3cbfd44e1a832eead05067e106d8c2d7dcc031ab7d1e842c4ee3ff806e9ea0394b96e6416
SSDEEP

3072:srQ9MJW6gZFbJchBuih27Xq7MTc5TU/RpALLwoj:F9XZJJchBR5gTGT2Rpcko

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MonowareNuker.exe

Files

MonowareNuker.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ