55f0225d58585d60d486a3cc7eb93de5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55f0225d58585d60d486a3cc7eb93de5
Size

2.2MB
MD5

55f0225d58585d60d486a3cc7eb93de5
SHA1

144795de3d703965867d8d2d7752f81319a2ccdc
SHA256

d22593ee4d2a6212b802c6a33d50363ebd5b1c15dbffff61ac190ab5647c8c2c
SHA512

05e51a2d9d037e2b98bf2b488bd3175159ce3f393313f5485253c785d78e2fe3f32ba9b47c78003e369c89dfb57f0aec17f9e85938d6f7ae7895a211fc72b0eb
SSDEEP

49152:nsKMlYyzCMACq5YtjkSQYlmF4t4ZhCWX/5/bDSNdu4bXq1nu:nsKMJzCSdQYu4tUh3SoF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55f0225d58585d60d486a3cc7eb93de5

Files

55f0225d58585d60d486a3cc7eb93de5
.exe windows x64

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 141KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rtqkpxjb
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rjelfsjv
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ