DG_MSActivator_v6[.]03_rs[.]zip | Triage

Sharing

General

Target

DG_MSActivator_v6.03_rs.zip
Size

15.3MB
MD5

f0491e2465f37c5ac9f9f992ee415121
SHA1

095c7aa4e439c1ea9d9df21049e94f1fdd8b9e04
SHA256

418208780e0e41c8261e9650419ecca149a89933256986e69cb16e03bfcd5c4e
SHA512

565b20fd475d7ec557083a68ec086abc755fd2ae57a72be488bf9ffee340489233cafcd8f4c6343eb73cef51b160f4225e0c9a71f4c6dd2347ff9541b2448c10
SSDEEP

393216:JAEMNKKbnhLJ0Ci5e16rtJDOiZfOIjRpjG9rqI4bnF1RX8a:JQJ0BM16rjBc4tbFH3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

unpack001/DG_MSActivator.exe

Files

DG_MSActivator_v6.03_rs.zip
.zip
DG_MSActivator.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

DG_MSActivator.pdb

Sections

.text
Size: 15.5MB - Virtual size: 15.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ