ud[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ud.exe
Size

93KB
MD5

db2a0a5709aab19ad1558ca63aaa3ed0
SHA1

3df2d5430b8890352aecdf0129d00097b572987b
SHA256

2a4337bb8cef9e0f7c8d5352a9850071b093e1c84903e726e93cf1b82159bcef
SHA512

d37098118c63d59e6cb51923e9d004584d9a82c927ed5a01caefacab826b5a1e9c541ca50f666e62eed1eda1de9306c420598f8fe4128544e501d5f5e7674d78
SSDEEP

1536:L8JT43kGV9XK/pbkbEIKGRJHTDxoxgbZ58ishIm5JOZAkFkvGayorprG:4VIkMYbkbEIDzmSbZ58ishIWJOzkv77C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ud.exe

Files

ud.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\hunde\source\repos\ud\ud\obj\Debug\ud.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ