DEVOUR Trainer Setup[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DEVOUR Trainer Setup.exe
Size

141KB
MD5

56772a497ae882b6b1e77cbf6dc93d2c
SHA1

f017f104c02914b3c851545ba378379e1e9967f4
SHA256

154a1794876c70a666ff06ca212cdffb718bcfb4e115d65a00e53294ace06fb6
SHA512

b35e601d880d61dda4e8dbb308775dd04868eaf780f5cccca2ae2596f30e7a0a3505c8168d588d7eb13a9239c60831909a57156451cea7ff02b3e2477b6df644
SSDEEP

3072:XGjm4ILlCI+4COHCyhaEtHZugr7t4ILlCI+4TOHHSTs:Xr+bwaEtHBHto

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DEVOUR Trainer Setup.exe

Files

DEVOUR Trainer Setup.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ