RealSeroxen[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RealSeroxen.zip
Size

564KB
MD5

717979461e381869685a2ddec59ad842
SHA1

5a25751f426040616acbaff834bfe62e4aef22f0
SHA256

deb63d6bc4b321d95c76b7938aa22bcb46735cb707e8809f961c8543336a85fd
SHA512

1220ada33ed47903f7d93cb977cfc2e536e779037c763ef47585a418fd88fe52dc64bc15a2cd9125ea064da2f553669fc00fe031d9a75ce1573007a07e521c6d
SSDEEP

1536:GDkCU3EgqkuzkriK4L1/mnn/tO53U9y9sk7:N3dqLBL1/s/ggGsk7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RealSeroxen.exe

Files

RealSeroxen.zip
.zip
RealSeroxen.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ