RyTuneX[.]Setup[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RyTuneX.Setup.zip
Size

93.1MB
MD5

37e89e96f126bc141c29ef34991e227e
SHA1

447ccdc07ca99cb40230a11bc70b9790c0e3fae5
SHA256

e926984cf8cc34627e4719a6d18711a9e43cb4123bc30458d6ca42f829845fdb
SHA512

52b89548649e38018f0b2b987a08cacf3df443579a51a7f5d05b11b39fbea6e79537a615604eeea9a85058a65b2e61d4c4a8561c834b0fff53c903ee8b6504c1
SSDEEP

1572864:5+VFFDOmuralA/jV4GWW17cpu4mqJ9D3srBjl2tDOLNA4vwaHWWBwK3ODnthusaD:Y7YZjV4fW1ApN9D3GjiOpX9ODzatEzsd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RyTuneX Setup.exe

Files

RyTuneX.Setup.zip
.zip
RyTuneX Setup.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\Ghanmi\source\repos\RyTuneXSetup\obj\Release\RyTuneXSetup.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 95.2MB - Virtual size: 95.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 403KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ