61b3b8fe57f60defc9a4a806dd96e26aa6dcb1b47feb42a61493143a1d510d81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61b3b8fe57f60defc9a4a806dd96e26aa6dcb1b47feb42a61493143a1d510d81
Size

3.0MB
MD5

fb110d0c3af54d5642fdff2d54ac3d0d
SHA1

93faf7fa22391ca4b7247fcfeba8ba1148537a02
SHA256

61b3b8fe57f60defc9a4a806dd96e26aa6dcb1b47feb42a61493143a1d510d81
SHA512

884bd375ec32b4bd3d7f19cda133c22ebd921386b00504d458964ed1ef6d7c77b08e257b2e1d08f937220a18ed9a1f1d556a050f1f12af583297d9cf6bb0c9ae
SSDEEP

49152:KMKgb9TR6PeMRFr5KdDeB4scfWRRpilPEpNW9Nsazgiw9mAGenGiwF90J6KcAbdu:XKcQRF9EkcfWRRclPEzPFiwr3G9QJtJM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61b3b8fe57f60defc9a4a806dd96e26aa6dcb1b47feb42a61493143a1d510d81

Files

61b3b8fe57f60defc9a4a806dd96e26aa6dcb1b47feb42a61493143a1d510d81
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.enigma1
Size: 544KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE