Kronos Installer[.]exe | Triage

Sharing

General

Target

Kronos Installer.exe
Size

6.4MB
MD5

be752065f42eddec4c0ef75bbdecf977
SHA1

af51188030ea9564ba6ea0e7944419cd81ac156b
SHA256

042f0010afba69e47a8f347610e9c5a06b69aef4db5b718196194bc6aaae78d0
SHA512

8ac0777fabed8524d97f44c53591c1372b3ca4b0fcca9221615b9f6f2189b3227f96a62b256ac4e015f95dea95361d26a115ef37b5382f3cb249d80d2b0aca50
SSDEEP

98304:2v2iHbalWeWP84rAJzM0gLIRfyC7egWJ4kqXf0F:2vtOM8Wb0guheg5kSI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Kronos Installer.exe

Files

Kronos Installer.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\ninol\source\repos\Kronos Installer\obj\x86\Release\Kronos Installer.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 6.4MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ