MSI_util_v3[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MSI_util_v3.exe
Size

45KB
MD5

6c748415c350f14fd5b78fa5c37173a5
SHA1

332d64f5885a738d6ce968172b79b1101303cb5b
SHA256

695800afad96f858a3f291b7df21c16649528f13d39b63fb7c233e5676c8df6f
SHA512

c53c5d8ab355d950ae27022dc79f168def1aaeeb64398a553bb96f73d5f1c4df2e085b977a3c558329979b86f99a940fa94e33e671c9dcc5cd7a1310d2eb7461
SSDEEP

768:1AthLhXIHo+tMCXCBU4copfP4xSwpPO0zsU9RXMJmiuofnC8+d:2kztMCSBU4copwVXz9dMYKfz+d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MSI_util_v3.exe

Files

MSI_util_v3.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\projects\MSI_util_v3_solution\MSI_util\MSI_util\obj\Release\MSI_util_v3.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ