NitroGenPatchV1[.]0[.]69[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NitroGenPatchV1.0.69.exe
Size

59KB
MD5

6a5d3a945572052c1c018f7e76a4b972
SHA1

572bf71201b12a0e305571bb4449d0c5afa595d0
SHA256

47f4af683db51e0f29cf6f21d6553984d0ed3eadd5ca177c3850ca1d75137dd9
SHA512

3a45a4aaae28e2edddf69b795fc202e607a1e2726c90f06d703029bddbb49c94263f7e9c33c028616a7b34f45d040d18f1c2009d75c43d17d08015ce01bd02e2
SSDEEP

768:2Bdiv4Kbwg2V+YV5XfADYI1WQZJpXgwCSRpJYambGDlRLCOPcUil+dhXIeB5T:y+bws3QbSRYfbA3Oof9dpIQT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NitroGenPatchV1.0.69.exe

Files

NitroGenPatchV1.0.69.exe
.exe windows:4 windows x86 arch:x86

Password: Jaiden

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ