HorionInjector[.]exe | Triage

Resubmissions

15/10/2024, 02:16

241015-cqh88sygmd 8

15/10/2024, 02:12

241015-cnccxashjq 3

Sharing

Copy URL Twitter E-mail

General

Target

HorionInjector.exe
Size

148KB
MD5

a688a6e024dc36a25870d895db291061
SHA1

e4227c0a430fe045e2aa50acdb7c097d39f224ca
SHA256

e0fe295dcccca7287ef252bd8971a53739f95177b95a50e48c36be2c1027eae9
SHA512

3bed397074b3376e84123ca6e204a2e7a5b15ed70f3bb04298031e8b5b9f358cdb81d8873cf502a246d88482be5b6fe7e5b41f9b48ea8187c3eeba1bf1d64aa6
SSDEEP

3072:UbFHqUGSCoEslON/q178+oO3BAE4T/9lvueZ:UbFHqUGSCPBh+7VST/9ce

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HorionInjector.exe

Files

HorionInjector.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\los21\Downloads\Horion-Injector\HorionInjector\obj\x64\Debug\net48\HorionInjector.pdb

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ