5aa574908da770406ecf25c9456f34594d784c4e9c57a8050fe551599647fe35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5aa574908da770406ecf25c9456f34594d784c4e9c57a8050fe551599647fe35
Size

3.0MB
MD5

af2d005ea22ceb38c96b052024628567
SHA1

61c57cdc36462a9c7731c9d331a9c11fe945e9df
SHA256

5aa574908da770406ecf25c9456f34594d784c4e9c57a8050fe551599647fe35
SHA512

b8c422a25e18414af13f0e06dc7e408f8b7be3c035a7e4f02b66e949ccd9e1c1df3027ee5393395d544f3c1b03be5ada4c53ffbac09bb5437db39cc7e7b0b6b1
SSDEEP

49152:r1DYtwbV9UA1RcmDdsoAKAD6T4RXKnx9W8MxsbY6L8btmK5:rxYubVjXc2d+F6n28Gsb88K5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5aa574908da770406ecf25c9456f34594d784c4e9c57a8050fe551599647fe35

Files

5aa574908da770406ecf25c9456f34594d784c4e9c57a8050fe551599647fe35
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ