4affcd282093516dde273549f569589a06ec868199a9cc35b3c41f18ca5d2163 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4affcd282093516dde273549f569589a06ec868199a9cc35b3c41f18ca5d2163
Size

3.1MB
MD5

dc4ca146a3f98703427dcbdb888b1c15
SHA1

90000c141c818ae31d4ea05ef8e3dd72e6958335
SHA256

4affcd282093516dde273549f569589a06ec868199a9cc35b3c41f18ca5d2163
SHA512

3c3e2785614c0426b3a922647f7b078447e9c2b8c8e6d18b4f76602bef10a7f0dc4ca84763633238239a84fabe3e387aea543453de17e229d44c6650c7827d4b
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlb0HWdvNEJU:Q+8X9G3vP3AMrd1T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4affcd282093516dde273549f569589a06ec868199a9cc35b3c41f18ca5d2163

Files

4affcd282093516dde273549f569589a06ec868199a9cc35b3c41f18ca5d2163
.exe windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 994KB - Virtual size: 994KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 386KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ