dsdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dsdf.exe
Size

14.5MB
MD5

f5ad0896fe0cd66f8b8a819a11247e0c
SHA1

2d81b0360c68dc80a43da6e2d9a2234d238dc8ea
SHA256

b4c41bb11f3720fad34424ccaef23db6e79a79dc17f614411bcdd63ccad3388d
SHA512

fedd4ac9bf78a1889b2673f4c31dd7e825c7451ee49c56d61e8c0ae65bced129a4fe2bfc05cc079fad5637e21efe1d2cbd1fa8ca74788e2ce8c285e6acffa101
SSDEEP

393216:rNs+6SQpCCq/50uNw1LcWk9lBjYSZhO/3kZn2vgCFsc70vTD:rH6SQpCFBJe1PzSa6n2ICf+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dsdf.exe

Files

dsdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14.3MB - Virtual size: 14.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ