d7feb2d8b628e2aefac781623b45aa39fbf2cce0da23bc6d21a681f26fef1cc7 | Triage

Sharing

General

Target

d7feb2d8b628e2aefac781623b45aa39fbf2cce0da23bc6d21a681f26fef1cc7
Size

681KB
MD5

ab53d00dbdcf43e22476706b2e333c1d
SHA1

b41a4cd7c8828a6b4decc3d3abeb3f3706fc629e
SHA256

d7feb2d8b628e2aefac781623b45aa39fbf2cce0da23bc6d21a681f26fef1cc7
SHA512

2b1eef04d268ef94962a52f2a2b1173820f272fc15f64108577b9703b8776d0297a5aa42de5e7e7c7d6036f0a7afce83d9d524c5b17238cdacada9e2e44ea23e
SSDEEP

12288:6S3wRO1Gl6Wqc8+IFfYt7RwTknRYhzohv8W8l6SpnXlEoKRRW7YR72:6LDnqcPIFfYtVwTWxk9lr1Xl2R07YR72

Score

1^/10

Malware Config

Signatures

NSIS installer 2 IoCs

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2

Files

d7feb2d8b628e2aefac781623b45aa39fbf2cce0da23bc6d21a681f26fef1cc7
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xur
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE