4QXKTNG0KFO93FS7JPOG[.]exe | Triage

Resubmissions

Sharing

Copy URL Twitter E-mail

General

Target

4QXKTNG0KFO93FS7JPOG.exe
Size

3.4MB
MD5

8d01a5226e8337f9c27424bbd56c6d26
SHA1

3671f6868d779aaf254e6e71e0d6c092cb50563c
SHA256

609e230fb76177e004f55572f4c812623fee224480baf2cf7f7d7ff5ccd5ce24
SHA512

c0ca0e9c71b9d4ea7ee9ceaccbe35afb9b6c19a1059289d399d279630410d015d5469431c52a275bd7c20814165a192675b48867f5c1f9047c989f5a00e51627
SSDEEP

49152:gPV4zvcU8h2I5JFKd0GoxuFvvP7mE+9hPIwWvt7X7lntBdz7SmDZTo6:g9iah2In0u9xKnMgNX7v7S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4QXKTNG0KFO93FS7JPOG.exe

Files

4QXKTNG0KFO93FS7JPOG.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 450KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ