E6NU27b9NED3PnHLweu4RnFKiMwM9OL[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

E6NU27b9NED3PnHLweu4RnFKiMwM9OL.exe
Size

1.2MB
MD5

8297aa1365d08ab78719c326f679d74f
SHA1

97bafb92c3d7c28364104e5ad4efa8f1ceaeb245
SHA256

db8bea6260f7c3b725e80e1993933afcf75244fc7dbfe014fcb6757fa2993ffa
SHA512

3377ef3eed5623519e35d9d9dd8a370521036beae88d63095fb8268e0ea6d5800e03f7b78f121935facf62aea05aa13e37eeb4c645fa3a64607f4d3af0860ad4
SSDEEP

24576:84m1uZotZ3Ba+YeK62w+nzkhZZ9V53G5bHTXNgurg7lzzw8M71EeOHfnFCJZ:NatZ3BaNeh2w+nz6t52NPr98HeAnEJZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
E6NU27b9NED3PnHLweu4RnFKiMwM9OL.exe

Files

E6NU27b9NED3PnHLweu4RnFKiMwM9OL.exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

vaev
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ioC4lBk
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Cyj7
Size: 1.1MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE