IdeagenUploader TS edition[.]exe | Triage

Resubmissions

03-06-2024 03:17

240603-dtdctsaf92 3

03-06-2024 03:14

240603-drgmgahb81 3

03-06-2024 03:07

240603-dmktbsha7w 3

Sharing

General

Target

IdeagenUploader TS edition.exe
Size

2.7MB
MD5

19123743b5abf93bed3ecf463ffd8cf4
SHA1

33185d6e48aa082e277c93c9cc3447a2581b4c1b
SHA256

ae355fba13de18353f8478be3d443b27dfd2252a5fecdf979eeada5d6e3f86ef
SHA512

c8e7c5d5478c95acfafc1e7eb2a4356bc943f94910c7d627d3fae1da8951027071df2bae99cc7f661addce242fac0a5628cbd3e6fcc1ef8a89d6a53153ec0e7f
SSDEEP

24576:rdHPOqx2WEJ3r6a2TCbcXpnKXMqtOF8T4amO/:rdHPYJ29CbcXpnKXMqtOF85z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
IdeagenUploader TS edition.exe

Files

IdeagenUploader TS edition.exe
.exe windows:4 windows x86 arch:x86

Password: vendoryangprovide

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Administrator\Desktop\IdeagenUploader\IdeagenUploader\bin\Release\IdeagenUploader.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ