RyTuneX Setup[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RyTuneX Setup.exe
Size

95.7MB
MD5

f8a9a86d26fc624173c290c11561ea12
SHA1

fb73055a4ecab4f93ea251119aacbf3464236d42
SHA256

38ec388ceec6d8098087e274e35e6bc840924929c99db83f398df713e2335c87
SHA512

a1f388ebf1e9161f166088ad3c32abe1bae114c0e0bca8f90ba53e950375ca98928f17888040618ed724561c739f1d717d9ec43ef6e9e91a1d46a1b7070d446a
SSDEEP

1572864:neTbj/9iJcFTcQPD15e41ilUfmbn0pQbyOaaANyOmysPm50mHI/j/zvabke+TyI:UbjliJOTbPR551it0pQbyqANyEOmHI/c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
RyTuneX Setup.exe

Files

RyTuneX Setup.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Ghanmi\source\repos\RyTuneXSetup\obj\Release\RyTuneXSetup.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 95.3MB - Virtual size: 95.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 403KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ