SAMP_Addon_2[.]5_Setup[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SAMP_Addon_2.5_Setup.exe
Size

39.6MB
MD5

343b2b0556dd8c2af1c3c58b86e2f86d
SHA1

41c7ca329fcaad4127c2be72b33046691ddd4cd0
SHA256

8ce903be219adfa8fdc13cbe5ba8b9bd204f95ab4479ec127d417de14942b765
SHA512

cf11357abf37503456efdbfa7d737c9165e1f6e887331d41f15a6a5090602191d7c6e64f4c00c1eb42d2cbb5c2a04f4b58b869f3a18ce7c857b425447ddcdca9
SSDEEP

786432:U8jn5KUWwEbMjVAMcW8QtZpMR9Wo3eavCvTzPiTA8CUVw/t13I58bdRt:U8T5KUM+V738Q7eR9QayfiTpVA/I8bdn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SAMP_Addon_2.5_Setup.exe

Files

SAMP_Addon_2.5_Setup.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 615KB - Virtual size: 614KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 57B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 38.9MB - Virtual size: 38.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ