dba981104495b3fa0d57005e34a35b954df858ff3667dde184a43fea767a6fd0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dba981104495b3fa0d57005e34a35b954df858ff3667dde184a43fea767a6fd0
Size

5.4MB
MD5

b37cb35ac1fb735e969f5bbdb33f37ae
SHA1

2d3592869be12aa89e2fab7d326b1aaa4a5a6415
SHA256

dba981104495b3fa0d57005e34a35b954df858ff3667dde184a43fea767a6fd0
SHA512

a8885a00e5ccd962f6e0f7df405a23c64151e90dd356f5d112e9908cb27011793df13fac5a9277c7201f725e2e10d15c56f723ccb2cb2fc694ec05fa37b57a13
SSDEEP

98304:wzCNFiI9QNiMEKHJkGcvKD6g04ZNgQhWqhtmwGKYH2m:wmIIQsUcIe4TntmPKYWm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dba981104495b3fa0d57005e34a35b954df858ff3667dde184a43fea767a6fd0

Files

dba981104495b3fa0d57005e34a35b954df858ff3667dde184a43fea767a6fd0
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 940KB - Virtual size: 940KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 49.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ