8b024bbdf0f332992ca3b3f08c2a93acd8e8d409c547d4ca498c68c94a73b4be | Triage

Sharing

General

Target

8b024bbdf0f332992ca3b3f08c2a93acd8e8d409c547d4ca498c68c94a73b4be
Size

8.8MB
MD5

da9306b28d4ce35d398af95bf1231e0d
SHA1

cf9868cbe91555972945273a2bc9f8d6563945d8
SHA256

8b024bbdf0f332992ca3b3f08c2a93acd8e8d409c547d4ca498c68c94a73b4be
SHA512

b3634e4d44699b947e1faca554c07aab8c4afffde998b999a9ad9a6a8f889e29b6941861e7dbee97d7c170d61b48c493970cbeda81811c1a5d7aaaae175e7806
SSDEEP

196608:9IptQCD1kd5y25V2t/T2xWxTXhxTmKGttqrce:9IpGCRqFz2t/6xWhQKioP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b024bbdf0f332992ca3b3f08c2a93acd8e8d409c547d4ca498c68c94a73b4be

Files

8b024bbdf0f332992ca3b3f08c2a93acd8e8d409c547d4ca498c68c94a73b4be
.exe windows x64

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 6.7MB - Virtual size: 9.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rxlojpnq
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fnzzvmnh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ