FusionLoader v2[.]1[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

FusionLoader v2.1.exe
Size

268KB
MD5

5322f852ebca7860b15c085d7c95a88f
SHA1

83b9904fb802b523195026cecb402710e3622111
SHA256

85956f8904660bc4f6e1c1912ba482231f438e5b52bcf12dc00dba2400c6aad3
SHA512

976b546a18351ebb55ff1120a5f5d33e4173ee054203f278d85f4d33d5474559539b2092c2cb9a0e294968ce45dec5bd059ec3a05ec59dc390f64bcfd777861b
SSDEEP

6144:YAEPqkBj5V+Sioc/lE/hI/h6c1ZfpipgKhSaPgz:YAcqkBXUq/h8hTpagKhSaPgz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FusionLoader v2.1.exe

Files

FusionLoader v2.1.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 265KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ