UPL0ADER1357[.]7z | Triage

Sharing

General

Target

UPL0ADER1357.7z
Size

4.0MB
MD5

29e02836a91f7c45d928c16f17cc83e9
SHA1

b1964d9b983bd54bda592783d38963109b2d3ba1
SHA256

5537c556af2095d16203e702ceb1e8cce35aee37a152698a828cd352581e4d91
SHA512

95f29d53a4d5869ffb968ab53d87d8a1650a849554e0ddc08db874cfba7f1a29cabc4dfbef0f168e150ad90d30894686b8046583844e4f0ef7aa89e6036be478
SSDEEP

98304:ISkg+VRbHW/wksEV0Xoc9MDeYq9FIBhuvgLl:ISk55WokDuXocqzqvIhLl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Launcher.exe

Files

UPL0ADER1357.7z
.rar
Launcher.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\rje\tg\2\obj\Release\ojc.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 369KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ