3ffa6eb4aa26681743692e2930129efd1d9945e6d5ac0b60a9f7fc53dbf19c77 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ffa6eb4aa26681743692e2930129efd1d9945e6d5ac0b60a9f7fc53dbf19c77
Size

761KB
MD5

63a2eb9c64d630b802a09ccd6e0e6f90
SHA1

a2b05bd16252e1c4ff12617c6332c782a6d3e3a3
SHA256

3ffa6eb4aa26681743692e2930129efd1d9945e6d5ac0b60a9f7fc53dbf19c77
SHA512

099ecf90dd825ece4e29c277bee376174fd0fd48b5d5b289d1c6c77d24009ecd9e381d6bd74c44add14462df340613b1a1b988dda0b4afcc3d61ff6e60550ca1
SSDEEP

12288:6zf/9bV8Yb06Tiyb9FM44ReXoCIxFJlxsBsN4AJo/Shnu/NRFdk4/0gc:6zX1oGrb9ijeXPIXpbgnvFdz/0n

Score

1^/10

Malware Config

Signatures

NSIS installer 1 IoCs

resource	yara_rule
sample	nsis_installer_2

Files

3ffa6eb4aa26681743692e2930129efd1d9945e6d5ac0b60a9f7fc53dbf19c77
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lif
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE