FusionLoader v2[.]1[.]exe | Triage

Sharing

General

Target

FusionLoader v2.1.exe
Size

280KB
MD5

35bcd6bee29547bcb1d0d61ce199fcb9
SHA1

60c7469cc552d39580cf8508b51fb56da9e09f88
SHA256

3e1a4f453ae44cdf7c08b9b4d659b79a94bb16f0999e9f8588e7032005a55ff0
SHA512

ed1db6199f0c0d7ceaa97202bb2d1a05b314f0c5cac5cd7092d8e8571e54e8ea18b1f0c8a46f72a599454287b38608383756ba915ec0d2fb3d0fb6d4b7279614
SSDEEP

6144:2NiWUf+Wb0Kzwnc94wndt7VtAD136tT+6Q4MbT4ECtA0chn:2e0Kz99tnHDADAtT+h4EIA0chn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FusionLoader v2.1.exe

Files

FusionLoader v2.1.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\ylsok4pz7qvc\obj\Release\doX.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ