155ddb082bf99d0be9bca122bf92ad4dc3f32fc1e4dbc898a50c0965f65aa584 | Triage

Sharing

General

Target

155ddb082bf99d0be9bca122bf92ad4dc3f32fc1e4dbc898a50c0965f65aa584
Size

255KB
MD5

6c007840bfc0ba42d8fe3b0206982373
SHA1

247d1d8be24cee14ac8e39921068d0bf534fca00
SHA256

155ddb082bf99d0be9bca122bf92ad4dc3f32fc1e4dbc898a50c0965f65aa584
SHA512

9bb478bb46368f4e2fceca57f27baaa5f6ac84a30d19fab163fb1bf6dc35d415ed2a4186ac129443aacd8bea1d2660abbd5d071aeb38bf50d64580e843d35fbd
SSDEEP

6144:R9bqRCHRJaKOqvgjVER9j73e8/Js/R1J35c/O0bj7:32IOKD4hERUgJCHlg

Score

1^/10

Malware Config

Signatures

NSIS installer 2 IoCs

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2

Files

155ddb082bf99d0be9bca122bf92ad4dc3f32fc1e4dbc898a50c0965f65aa584
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rol
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE