440a13dbe1b879dc3e51e7af511db6c9d755dcca072033c0be3344c43a39f2e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

440a13dbe1b879dc3e51e7af511db6c9d755dcca072033c0be3344c43a39f2e9
Size

1.3MB
MD5

311a8409a1b87724a6009a03f5956f2c
SHA1

ee6ee2d2259c2b770eff621aa838ee3724e896e7
SHA256

440a13dbe1b879dc3e51e7af511db6c9d755dcca072033c0be3344c43a39f2e9
SHA512

562ba202c9ff007713b6af8ef1649381f9736e95b2d265702b6f478c014d1de1276edf7b9619993e4554f9f2868e038c34a49fb8fc0281c60485ed441ca482da
SSDEEP

24576:BFw2nes7VX8XS/yVaTerOcydZbLEhwJZRe0pKcH94nBXhl2i0NzO1:BFw2Xx8UcipLdRe0R4NhN1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
440a13dbe1b879dc3e51e7af511db6c9d755dcca072033c0be3344c43a39f2e9

Files

440a13dbe1b879dc3e51e7af511db6c9d755dcca072033c0be3344c43a39f2e9
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

FzH1
Size: - Virtual size: 608KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

FzH2
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE