ed6130f9edb5a1cc2bc0bd347b05bd8632a89fdbc2abc0831e77adc910828274 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed6130f9edb5a1cc2bc0bd347b05bd8632a89fdbc2abc0831e77adc910828274
Size

3.5MB
MD5

f96690057f7d90eb1de16812a0308eeb
SHA1

f4a37542ebb2c26b3716af74b9ef4618e96c6dbb
SHA256

ed6130f9edb5a1cc2bc0bd347b05bd8632a89fdbc2abc0831e77adc910828274
SHA512

451831bbf8418e2dfbc37d395ac378aece98fed847656da16c7910f1d3d4098b250b0474181b2772605e2687bfd036049285c5134265f916b5f9de63bf183ebd
SSDEEP

98304:vv8WvH8DkfWDoLTVXtDR64mugxPN8FB6wn:xvH8oRtXtDRhme6w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ed6130f9edb5a1cc2bc0bd347b05bd8632a89fdbc2abc0831e77adc910828274

Files

ed6130f9edb5a1cc2bc0bd347b05bd8632a89fdbc2abc0831e77adc910828274
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 874KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 944KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pwrzeuun
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xpeajkjd
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE