83c0cc3ff90e494356049347726a5dde2d3b2c8e75652d1de85593624aaf2c88 | Triage

Sharing

General

Target

83c0cc3ff90e494356049347726a5dde2d3b2c8e75652d1de85593624aaf2c88
Size

753KB
MD5

822c8ce691e0bd5579eb64b0e5f03889
SHA1

7343d12fa8adc7c673aab9dded43a4984a6f3815
SHA256

83c0cc3ff90e494356049347726a5dde2d3b2c8e75652d1de85593624aaf2c88
SHA512

09520fb25f46df3d24019934d158af85220daf4119f10ad8bfd3c5465e8c4dd57a131287d306cc75fc85dfb3f8bf66d2328c6dc7a15a410e96c8013622ca8e2c
SSDEEP

6144:opqoa8aLiC/2OLSAN7gNVpNleQUohBfGPOtQciXeL/XYqGlebojSP2pjNhcAYnCl:opqiC/2OGAtkCP4cejGSOpRK3CnIikq/

Score

5^/10

Malware Config

Signatures

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
sample	autoit_exe

Files

83c0cc3ff90e494356049347726a5dde2d3b2c8e75652d1de85593624aaf2c88
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 495KB - Virtual size: 495KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 102KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE