methsolutions[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

methsolutions.exe
Size

311KB
MD5

d8fe81f9cb3dd100b352d9dbf97c718e
SHA1

64e0964cfc83569235b687546f820c43032a3e3a
SHA256

a1b37fd0852173f4cf26ee7fe1b403280a11bc40f762a7aeea7a49ac0a9ea486
SHA512

c392e731b39ea5bd2a182615959336b62ff57c35f2ee71a24572f465a2d3ce5b5ad3d167fca05d68cff135f1cecb50463dbb4c067e1e4d9f25adf20d1cf91f4c
SSDEEP

6144:D9DEezcbFvCjBylOOvZ/p9JwWfPaez9fEGYk9xjp6vWKfqnI2CEVQzoqfM:BDEOCvwQlNJLP3EXyT6+KfwvffqU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
methsolutions.exe

Files

methsolutions.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\p26gskgr23\obj\Release\' .pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 309KB - Virtual size: 308KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ