Nexus Login[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Nexus Login.exe
Size

684KB
MD5

7cd22ef1f4e5ef3521f7760ba663b0ae
SHA1

40e1b286b1def88d81dd4878678b0881e5518383
SHA256

5d38039aa1a735a5ea958182c86e95687e855fcb7204809fdc96fe0c36c2ee88
SHA512

cd92e68729a7ea7265e09f00249264c7e11ec283b138996136a41a8a8a4ca2b468b5ac3b24f2f805c6f2a684baa35a5234f1dad4bcd66e4714ab2db6d299909e
SSDEEP

12288:qCXPQbnNXD2bjnGFfGVBcojRHiSsWrzeKIUSGnNTQMGf3S:yxX6pgodHrsWmKIUSGnES

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Nexus Login.exe

Files

Nexus Login.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 465KB - Virtual size: 464KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 218KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ