MEMZ-BY-DREMIX[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MEMZ-BY-DREMIX.exe
Size

2.0MB
MD5

09fcd0af67d9c19f518cae30f376936b
SHA1

4f20e626eef473c0a1f839329e0d3cb0ffb8371c
SHA256

a5ee7078554ccd382105a482769be58cddd5ad4a4f683fe638d020e9c4c865b5
SHA512

8d688deb2c5dfff54f50d391825b4d95a663160fc40b9809eaeb80ab0772d1962d3647dc6af328e564e1b8a7421557e69c65119eccbda743973ffe1be528cb3b
SSDEEP

12288:mAyJVpzT/WC45DQs9HAjKwcT3CJLSxCRGQq6e2+Zj6bOGY9qQPRjE:2VpvDgSAuS2OGInZj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
MEMZ-BY-DREMIX.exe

Files

MEMZ-BY-DREMIX.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ