dd41f12fe2d2be3dcd70a86f00b16ac8eb74b0327494519dd09ac95006ee6cf2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd41f12fe2d2be3dcd70a86f00b16ac8eb74b0327494519dd09ac95006ee6cf2
Size

899KB
MD5

6e0a890e44b8d9f859f99b3e8748e96f
SHA1

3647089e20f4cbc65af5c757c898343979f392f6
SHA256

dd41f12fe2d2be3dcd70a86f00b16ac8eb74b0327494519dd09ac95006ee6cf2
SHA512

f2d9a3c28a8720b912e8473c846b036a3a3bfff4a4ac25471dee65a6a16700482e388504883d578f3d189333e2bf1e1d51eb177e1f1e3eeda6017fc111722908
SSDEEP

12288:pJV5ZKK2QZhsWdoV+EjcRvp4DMXiB43MsyMqsZSmbbCj/TN/:95ZKPtWdoYEjcRv+GujAWj/TN/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd41f12fe2d2be3dcd70a86f00b16ac8eb74b0327494519dd09ac95006ee6cf2

Files

dd41f12fe2d2be3dcd70a86f00b16ac8eb74b0327494519dd09ac95006ee6cf2
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 120KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 25KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 368KB - Virtual size: 548KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 820KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 658KB - Virtual size: 660KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE