2ced91764296c8a00371c6bbe417eeac91309bf1c18a3a9b4cedfe97a0cc6ef5 | Triage

Sharing

General

Target

2ced91764296c8a00371c6bbe417eeac91309bf1c18a3a9b4cedfe97a0cc6ef5
Size

13.7MB
MD5

2f3bf6080571c5b07104aaaffa2186f1
SHA1

97b5dedbeccd7a2f3f5227c7e01a42a79d419977
SHA256

2ced91764296c8a00371c6bbe417eeac91309bf1c18a3a9b4cedfe97a0cc6ef5
SHA512

bff1144b3295d0c5bdaf94bd847f1bad5d85854d9b69176230988bb0253f82fba41c5fd7e1e418ff7fe0051f006f1c545c6f1df62db6223f4c7c97cae2e524c6
SSDEEP

393216:BpkxMjWhRH8EddHkAZtgSuPfEy6uPEYrkQGLdW:BpkxBEEd1kAZatn16uPEYop

Score

3^/10

pyinstaller

Malware Config

Signatures

Detects Pyinstaller 1 IoCs

resource	yara_rule
sample	pyinstaller

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ced91764296c8a00371c6bbe417eeac91309bf1c18a3a9b4cedfe97a0cc6ef5

Files

2ced91764296c8a00371c6bbe417eeac91309bf1c18a3a9b4cedfe97a0cc6ef5
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 12.3MB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
main.pyc