RJ CHEATS[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RJ CHEATS.exe
Size

1.8MB
MD5

260a39c9e732132705ae2ded2bf5d236
SHA1

37652d72c93c786dc97f6f21d21fbe7c2fb26105
SHA256

4c539b205440a04eb1c01aced23309f766ea4932222232d6e9da8e401e892e9d
SHA512

c303fc9f18aae35a24d3ba43d44a907c2751d51f942c615de7ded6baebd9aca8dceca15d0906f552738b4fb6abcc6f46493225e730a228a53dbb9561e667594a
SSDEEP

49152:CLxEiGt9H+ITYbNbNWo4kSH3OqtwIWmew+W7SCraR:oxUQIT4bNJFY3Oqt15e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
RJ CHEATS.exe

Files

RJ CHEATS.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Y_x0LK
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y_x0LK
Size: 222KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ