msedgewebview2_Guard[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

msedgewebview2_Guard.exe
Size

4.9MB
MD5

0698c033fc2cf409de76368a9a2ce1b1
SHA1

d6de88fc54eb6ec0e1ebac5c48c993e2a33c0d2e
SHA256

d4b86634a0e34511bd478596e477f643170d7cde77aa81329692ff51b2113903
SHA512

0bd04654551ec2ff1904f5b717f1bb4319dee29ea5faef3a2abe1afcda7ea2d0dfc135820c3d5b6a16421c6f4bc9ca568d21f9c7f9b7547fe7998e1221be0c5a
SSDEEP

98304:/PxnzfDEPG3o2ujYDk7wTtMh3+eKgTH3D1t4pZu2P0wvJ4hxSCajbb:/PxnUQRuj7ctQ3YgEPpvJ4hkb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
msedgewebview2_Guard.exe

Files

msedgewebview2_Guard.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.9MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ