IMGAY[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

IMGAY.exe
Size

15KB
MD5

715952f349f32e0aa9602b87a7c4a4e2
SHA1

cb824d7a63614f7bceccfe5caea1454590fa1e5e
SHA256

c736cde8c40c0404744d6fa44920c7e8061fe38b824bcc4a1c5bd75571970861
SHA512

377c6d0fa502df41fe5dcb5c749423b9618860530ba5b3d3d99d6b9e023670900e5440f1ff7f151d0ebc69c8e125e99eaf514609541aa8870df5ec6bb5754fdd
SSDEEP

192:e9pOyP6g3tYcC0z8YRvohB+4WRlPmYRkiN7cuyK+slH9gN8wYL/XFk:efOyP6+tYyzpQw4QlO8N4nKrH9DzL/F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
IMGAY.exe

Files

IMGAY.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ