Medusa_Loader_3[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Medusa_Loader_3.exe
Size

849KB
MD5

e27533fcb3b740c668828e758c863982
SHA1

0e512e63521dd99e3cff5396bcea8fad64af61e5
SHA256

c6c0117d46de30f27f20db691b03124925e2280afae116dc8ecb24952a55ad83
SHA512

615862a222f7f9f97b27ed3ff738b5e610c06ccb149347d1a47ed1f586561491e22b84ed83d6434bacc2d6213870e7ea04a528989e914fa8b5034919f9c26768
SSDEEP

6144:dbVfD0Bwg2Cf1vEs+r5qzzh3vEs+r5F3vEs+r5tR3vEs+r55IvEs+r5vvEs+8519:dbVfDO9gtqXh/gtF/gttR/gtQgtXgsL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Medusa_Loader_3.exe

Files

Medusa_Loader_3.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Hiorac\Desktop\medusa loader\Gamesense Loader\obj\Release\Medusa Loader.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 731KB - Virtual size: 731KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ