740bda294d5060aa15a654d48f1c6ac8d15c37534d96b8355651da566739017d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

740bda294d5060aa15a654d48f1c6ac8d15c37534d96b8355651da566739017d
Size

1.2MB
MD5

87f9e7669beb1a74f4c51aa18e05a15c
SHA1

1129150b0a4b7a82d90ec0d8d84b07d29b8beab9
SHA256

740bda294d5060aa15a654d48f1c6ac8d15c37534d96b8355651da566739017d
SHA512

14f0e9fd92116fe098dd187eb00108a1aa08d3655c58950034126ac434f0927e34953d8b3d9b962d38dabebc9f2bfc4c78454fdd7f4c265bcf2f59ead7d8db85
SSDEEP

24576:lJeJfAqkjp98zHpieTNqDsj1dEjBcJ9nPx/igr:jeJfAJGpLpqDe1WjsnP8

Score

5^/10

Malware Config

Signatures

AutoIT Executable 1 IoCs

AutoIT scripts compiled to PE executables.

resource	yara_rule
sample	autoit_exe

Files

740bda294d5060aa15a654d48f1c6ac8d15c37534d96b8355651da566739017d
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 404KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 688KB - Virtual size: 716KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE