24af4f10c0fba25758efc0e9a74661d0de7a56103759510c1dfa819754abae73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

24af4f10c0fba25758efc0e9a74661d0de7a56103759510c1dfa819754abae73
Size

1.1MB
MD5

0d27abf8df85007723d3f6b2c147839e
SHA1

88c7c138c3b72afc300b079cb8bc717a92801fe6
SHA256

24af4f10c0fba25758efc0e9a74661d0de7a56103759510c1dfa819754abae73
SHA512

eec61f109d620da4194931132cc7a27b84096657bc91051d4f4700e0034bebf608df46a9e461989207d9f2124aac440a53f7d8811a47ffe199c9bff2c9d4e9e8
SSDEEP

24576:nJeJfAqkjp98zHpieToABcJ9nPx/igS8z9:JeJfAJGpL8AsnP8+

Score

5^/10

Malware Config

Signatures

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
sample	autoit_exe

Files

24af4f10c0fba25758efc0e9a74661d0de7a56103759510c1dfa819754abae73
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 408KB - Virtual size: 408KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.penask
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rrdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE