Ui Updater[.]exe | Triage

Sharing

General

Target

Ui Updater.exe
Size

85KB
MD5

063025975333195143418fae4fc78cf5
SHA1

0286aa10e6705fe0752f2dd52ab9b6d9ba8610a1
SHA256

a7731137a8d24944b7e002922c499883098d1cdfcecf2a6202064beb906bc21d
SHA512

6f25ec5c470446b1f76b7478dff364b78f0393e72db8530c67dc874a6a3e9f49e3468ad5a25a6183e57c0d111b7502fc03d501bd470c43b46b79081c0b9ba3c5
SSDEEP

1536:RQSEyt49G4p/dwVrZEX8gSK3eQfGG8f5EXUkrdRbeaPgFg4dRDKejcbJe2PPsXC:RQ19ZIZW3nfGG8fCzrbxgFPKeIbBPsS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
Ui Updater.exe

Files

Ui Updater.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ