9efebab260bc38f89b6b35cc8771061110a23449857f52d1bdb149f1d17caa69 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9efebab260bc38f89b6b35cc8771061110a23449857f52d1bdb149f1d17caa69
Size

4.0MB
MD5

4cd2b4cf9a1168c3584174a453a220a1
SHA1

518f82b634838f2c808ee50ae132999c7aaf26a4
SHA256

9efebab260bc38f89b6b35cc8771061110a23449857f52d1bdb149f1d17caa69
SHA512

453fcbfae3ac8da1f25dd8c9737f76992b58c8975980369f6eb452f7bdf0014affd40870acab68b313f00fbc21197bb36017cc8a138da35bab59da0cb50af8da
SSDEEP

98304:AL3R1ujuiC0MR+0kMV1rAPR/hZLl88PYoRA0VVP:61ew8Sk9hZxda

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9efebab260bc38f89b6b35cc8771061110a23449857f52d1bdb149f1d17caa69

Files

9efebab260bc38f89b6b35cc8771061110a23449857f52d1bdb149f1d17caa69
.exe windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 858KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 418KB - Virtual size: 789KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wfozxoqg
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

copdamze
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE