4416ae4550db7da6142def01a056aa2214036a8b718d5f17031cd9aede39fb66 | Triage

Sharing

General

Target

4416ae4550db7da6142def01a056aa2214036a8b718d5f17031cd9aede39fb66
Size

4.5MB
MD5

7e050b69e98c5ec9210f66e0c90e0b76
SHA1

6fba0dbbce41e76fbc0ffb4d193e8c6e9020da18
SHA256

4416ae4550db7da6142def01a056aa2214036a8b718d5f17031cd9aede39fb66
SHA512

e9df367eb76b947cd38aab4c391f8fb1b94bfeafe4cf581fd51f8e1cd6da3df317e5c9aa2672fad14b121aed8a68cf570b3617007cf3f7ff9bed6d86669219a3
SSDEEP

98304:5jMaFfnXAfveVnuJmhKRStK1uFbJeYUk+EPw/jh/FIYbNEWLwmVMK:5lFfXAfE4RgQUVeYUBEPw/NnNRLn6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4416ae4550db7da6142def01a056aa2214036a8b718d5f17031cd9aede39fb66

Files

4416ae4550db7da6142def01a056aa2214036a8b718d5f17031cd9aede39fb66
.exe windows x64

79b3362178937bf9559741c46bb9e035

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

Sections

.MPRESS1
Size: 4.3MB - Virtual size: 10.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE