ddfeac583a1376ce6e9c6d1297857dde952077a4cbf04baaffc85b0bdc53ea1a | Triage

Sharing

General

Target

ddfeac583a1376ce6e9c6d1297857dde952077a4cbf04baaffc85b0bdc53ea1a
Size

8.4MB
MD5

1115733f23025ca75fbc7ee218f2648e
SHA1

9f42a8890993a0d582f7e8df84c61f60bc277fe4
SHA256

ddfeac583a1376ce6e9c6d1297857dde952077a4cbf04baaffc85b0bdc53ea1a
SHA512

372631b8e7121788889fe0a2fa48ab728866b32cf2f9b31df0694df97cca947a32b6555818b4c6b517796c21470e570a7eb4096d77575465cc0d98eabd21fd4a
SSDEEP

196608:Gqk7X6xYm/xgwGYKtmIXmqeBdboTlCt1jK2LZ6Lsnn3K2Onsli0i1X:GZqGYKtzXmhdMTlCe+n3KNnV3N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddfeac583a1376ce6e9c6d1297857dde952077a4cbf04baaffc85b0bdc53ea1a

Files

ddfeac583a1376ce6e9c6d1297857dde952077a4cbf04baaffc85b0bdc53ea1a
.exe windows:5 windows x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1.8MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.5MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ksezksuo
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jxyfuiar
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE