e5947ee21e8114949fd8521007f397c455ea564f80ac6b6d62b1e7547bb7a27f | Triage

Sharing

General

Target

e5947ee21e8114949fd8521007f397c455ea564f80ac6b6d62b1e7547bb7a27f
Size

36.5MB
MD5

f47a7e5485aba1da1a3397e3ac745adf
SHA1

4c5da82aa4f5e0a21278ef48ea535c42756bc41c
SHA256

e5947ee21e8114949fd8521007f397c455ea564f80ac6b6d62b1e7547bb7a27f
SHA512

eab525f66997f092fbd15b06f3062131d6966daa37da446f436dd2ce7d12360f2d46b344db4fbc2de331f155fea4f288059a70f21339e370f8b6f0d420b81da6
SSDEEP

786432:uzU0HiPaItTKkrWKcG+8V3lJv5cbv5MqT/sWZ:uUCiPaUr5jVJvg5MqdZ

Score

3^/10

pyinstaller

Malware Config

Signatures

Detects Pyinstaller 1 IoCs

resource	yara_rule
sample	pyinstaller

Files

e5947ee21e8114949fd8521007f397c455ea564f80ac6b6d62b1e7547bb7a27f
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 21.5MB - Virtual size: 21.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.enigma1
Size: 13.6MB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE