Malinovka Injector_undetect[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Malinovka Injector_undetect.exe
Size

1.4MB
MD5

68513d9f26bb7e49d625e0cb1d120ef3
SHA1

79c689f1bbbd190b401a88fc4bcd8135381b2774
SHA256

1852882eb05f8f218c33ff3eb16c2a9dfedeee7cf5446737dbf690a41000bbca
SHA512

b18b12033427d246a1fdc428baa899b4ac0558f0ea26815a4b650cf0ff0416fdf2c1ec76246d9238bc7ceee7207df53e9c1a1f245e239df83aa3f7ea416c6a7b
SSDEEP

24576:sW9YDe4fzAio6OMd462MDLlm9RxhZrAj8ddg/ZYRNL:WzRo6OMF1DBm9RfZrAjt/Wb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Malinovka Injector_undetect.exe

Files

Malinovka Injector_undetect.exe
.exe windows:4 windows x86 arch:x86

Password: 123123

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 36KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 265KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 202KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 945KB - Virtual size: 952KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE