Sick Logger Trial Version[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Sick Logger Trial Version.exe
Size

497KB
MD5

51e37feae42f46c2c59ed2e5daaab0d6
SHA1

09244f94ec2c5f3a56bdcb9d9105a90720f14c6c
SHA256

b58776ff2e39a4026084ea572003764c1fce134f188d57aa98cf4bb55d99081d
SHA512

ac6d76d8907117f7e80f553bef1b2826b750900487d4107ed8d54c5e437e6b053730871d9167abee1bd9b02486735892e5e6baf1c772a90f70865bbf50dd1f72
SSDEEP

6144:KjZjZ1WZgW9bLKBCC0DcUlDbxbobWbqI9FhO5xVzVpAvjnQsmYGIygDBa4RFCpO:gW9bLKB/Q/yjAzFzGUDBQI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sick Logger Trial Version.exe

Files

Sick Logger Trial Version.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 269KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 226KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ