48d577a43af8fc4fd494ad133c84a5d9b60ed3532f14359c4d926843da895825 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48d577a43af8fc4fd494ad133c84a5d9b60ed3532f14359c4d926843da895825
Size

396KB
MD5

a017a396a66df022fa7b69c00509e580
SHA1

492d5be2e407f426384a0a585995b41825b9c061
SHA256

48d577a43af8fc4fd494ad133c84a5d9b60ed3532f14359c4d926843da895825
SHA512

e4f4939a82f84185a66a418c4ed9e14c1a4ca2477fe74f04e7cfc5f96241da0753d2e0171a86b7403801931a655decdef3122e041701e0992a2b00095792b97e
SSDEEP

12288:wMo+7FsBmE8p2saMnnpxjyG5WWPCyJcF2E:wMoLYfyG59DCFz

Score

1^/10

Malware Config

Signatures

NSIS installer 2 IoCs

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2

Files

48d577a43af8fc4fd494ad133c84a5d9b60ed3532f14359c4d926843da895825
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qnk
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE