SFKG v1[.]3[.]exe | Triage

Sharing

General

Target

SFKG v1.3.exe
Size

392KB
MD5

3590e3e4c9759f4e16e9dc922e47a951
SHA1

38a118ff9a46ff6c09607d234d8659e090901d54
SHA256

c51c35c637f561ea54ab8a6aea7f6561f139374c9f03fe800c605a0e01f0250f
SHA512

b089141b32e62d42b3ec5805b04516ee2e1cd03811a75f158ad22b3fc16494d9221f6de28f5c98670e3997e6121e10cb86130bbf6247c8c7f36ee52d3d1e4a6c
SSDEEP

6144:p0kV80BH143hdB8+p5i5ea6SLac36/lChd070xT80BH143hdB8+:p0kS02/jp5Ue3aaq6knI0xo02/j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SFKG v1.3.exe

Files

SFKG v1.3.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Will\source\repos\SFKG\SFKG\obj\Debug\SFKG.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ