EmuDskSvc[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

EmuDskSvc.exe
Size

8KB
MD5

5922040c5eff513fe1ea439bda0b1dbf
SHA1

dda156d23ecd3147576de195c4b9cdc63e0cafea
SHA256

6149dfdfd1bffe9d98445e788e91f6c9916ab9270ecfb38bc729edabb81f9128
SHA512

8f002efa10391e8dd91a3c3709fe067f6bba337e3b4ff2f5f605c677f347b493bc96673c9573787bf1fcf0830e519b371ec3a3240791834b6aa45f6157453f06
SSDEEP

192:8Ix75mAYKDedBYL+UK+wEY/fKb2WhxrTyf:57CK+cK+lY/f8fJTy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
EmuDskSvc.exe

Files

EmuDskSvc.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

H:\Backups-12.05.24\repos\EmuDiskService\EmuDiskService\obj\Release\EmuDiskService.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ