a6a1433d3918e1f70ac70959a5ec05b802f662edb14a67efedafbe86ff3de13b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6a1433d3918e1f70ac70959a5ec05b802f662edb14a67efedafbe86ff3de13b
Size

3.5MB
MD5

8ae2f7da008af8982316a32369d1c24e
SHA1

b5d1a1a6a77415e70c79a821304041f8a268461d
SHA256

a6a1433d3918e1f70ac70959a5ec05b802f662edb14a67efedafbe86ff3de13b
SHA512

230e48770b7f4cdcd857e88410390397aade22821adbebe2ebb8c52dd68af2cfa1a93027d8178e66eb2d01acf6370880ee5f9ae660a184ff6ecf851498b1c48c
SSDEEP

49152:zUEnV3huytRwdI8DdPq075teFpt12KQO3jpwG/Hlzc12nKr55ElY2HvBnEaF:zDcSu5tSpt1rQO3twG/FAY+2Hlr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6a1433d3918e1f70ac70959a5ec05b802f662edb14a67efedafbe86ff3de13b

Files

a6a1433d3918e1f70ac70959a5ec05b802f662edb14a67efedafbe86ff3de13b
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1016KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 884KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xvrammwx
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xpzjkxcy
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE