0fde5611c2f89b0a421b88953cf7fee100b691b3ba1e18596c13a34e4c87af91 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fde5611c2f89b0a421b88953cf7fee100b691b3ba1e18596c13a34e4c87af91
Size

1016KB
MD5

a263dd1c6ba16a0938f0bc78082d9dcf
SHA1

bb5f0b899146a20a5e449293581c5d2885c557ff
SHA256

0fde5611c2f89b0a421b88953cf7fee100b691b3ba1e18596c13a34e4c87af91
SHA512

18b589935bb3b5dbe161bf30869a5cd79e22fca015d19b0746943aee552baa409f6a618ba905019b5c381675699e1f23007fac534be9e538970c7630a091bba8
SSDEEP

24576:IrvnKAOB5WuXv2wV+Wi0/6Mf+gCXBpC32OLgtBmMXNr:6vnKrBtv2Wi0SuBABpwgrd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fde5611c2f89b0a421b88953cf7fee100b691b3ba1e18596c13a34e4c87af91

Files

0fde5611c2f89b0a421b88953cf7fee100b691b3ba1e18596c13a34e4c87af91
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kwn0
Size: - Virtual size: 820KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kwn1
Size: 881KB - Virtual size: 880KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ