SeroXen[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SeroXen.exe
Size

343KB
MD5

b85d103f2ef534de75f1447b8289fd84
SHA1

2fc3ded05126875251aa981e58a5771b5008f5ce
SHA256

64b4856c4510bfe8cbf192da73bbe591f4d54778699b41cd2dceca0d05b395ee
SHA512

a68ecdc2bf9dd2461617f5142294d2f6d73d0d1aebab8e1856b427fd2baf1a810495e4bfc7ed62330ad498fa5f1bea498f0bf04928073feb0d0563c131c16273
SSDEEP

6144:HiYTk9N+hQkfzy9ixQGU+aKxhjIg68pDbvdt3dAaUTP4euNbJVq:HnTk9NUacyHpkhV64bvdQaMw3E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SeroXen.exe

Files

SeroXen.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\C5\Documents\SeroXen Stuff\Quasar-master\Quasar-master-release\bin\Release\net452\REPOS\SeroXen Launcher\SeroXen_Launcher\SeroXen Launcher\bin\x64\Release\SeroXen Launcher.pdb

Sections

.text
Size: 323KB - Virtual size: 322KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ