MonkeModManager[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MonkeModManager.exe
Size

251KB
MD5

2818f777195407942215c49ef75a5229
SHA1

3f841061d689c2088c6c4f05caf243ba6a8dd889
SHA256

100a037c254127eba0a3e0b8cd300599cfdf96a4b998cafa25cd450995066e56
SHA512

b782084a5b0c12d2cb56c3a130a37d419496c9901b267ac9ae2adab361c5b193912ec5e0fd73f8139a306994259156a1be86705608f9a5751396e980ac8be56c
SSDEEP

3072:JfgapzE090HbJekvkF23P88RaF23P88RwKEEgKyIyEwwE090YvD:JNxE09YbJZsWPKWPvEhWXE09xD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MonkeModManager.exe

Files

MonkeModManager.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ