Loader[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Loader.exe
Size

4.7MB
MD5

bc234a184a07580a2bcf0c170626d72d
SHA1

422d3aa15990fa402fd883e3cff2af72c73668d3
SHA256

275554f98f68b92718aa74c05d22f2a1e770608b17cc120dd0de7d4175d6b340
SHA512

160a6d096f38bf288a443c48089701b5be074bc45cac46e340545bb9f39c99609bca941d558926e9d4e1b78a56532f1d118216c508b9696e4047657c6ce7f1b9
SSDEEP

98304:bVaM6VbNzrX54FmkYEnjc3ZXZ78DzdUbtgEDBGUj/0QsVZ55s:wNJ4F2C41szdogjtQsJ5s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Loader.exe

Files

Loader.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ