LrhyzIl40E4GDdy[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

LrhyzIl40E4GDdy.exe
Size

658KB
MD5

129c5efbec2bca65b240b80f7bdf6f0a
SHA1

461467e19be4a21caf06528c8cd58f7ec04196f4
SHA256

cd45d1f7f7b3589b204955cfc0e36f0f9912f288486288799ecfaddadbc80f8a
SHA512

e929bea123b7cbc585680d783415fbef6c59c43c1168223072b8e91ee937dd9aa2d68d924667d1c05e0b01320fcea9ad9aacbaebde0aeb89f3adc46a306fef14
SSDEEP

12288:raCR5leZlNnRozsynCYh9LNQj9RCwlPQmVm8R8cWle5B+JTL:m+er/in/h9LNUHHQSJRSe5YJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
LrhyzIl40E4GDdy.exe

Files

LrhyzIl40E4GDdy.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 648KB - Virtual size: 646KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ