ComSvcConfig[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ComSvcConfig.exe
Size

91KB
MD5

cca81515379b907ca320b46c5123ee80
SHA1

1eaf40b2f17044f46548dba5468546fc3687d0c4
SHA256

2d53db060d04dbd44fdb9b0abed83c0d6cff5fd0da396077d72b9fb1a44837e8
SHA512

5f8134d6f96122846446893e61c0ac48974edf329446160a520e16f10777509c71fa50c6edf379783f3791595765009416e3cc403ba63ddaab3b4ac950b184dd
SSDEEP

1536:YM8u2z1xi94wvuZpmieTzf8B5dftDXxoH3pgBjB3g0QCKogqSp0gpLs69auc46Y:YMY1q46unmtSj5xg36BBw9qSp0gpLs63

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ComSvcConfig.exe

Files

ComSvcConfig.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ