daa8f21a20574045dcd3494a39d8d735a8e3ae5a116244bae8e3deb1f60ed930 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

daa8f21a20574045dcd3494a39d8d735a8e3ae5a116244bae8e3deb1f60ed930
Size

1.3MB
MD5

4f68eed21e1bb71ec4e731b8732750dd
SHA1

29d679a0633ec407b582e6b0248c1e8a77047f43
SHA256

daa8f21a20574045dcd3494a39d8d735a8e3ae5a116244bae8e3deb1f60ed930
SHA512

cef6dfd04e41269df48a7d4d38a15aa5d3f08460c38e668fbbabed93fb42eb1ae51b71a6c6b984322470b52a38c64018b13561a3bfa473bebc97958da863ffd0
SSDEEP

12288:a9VKWvs7qT6hsce3/dsZVrjvwt/2eEZGbyV5+lvmx:mKWvs7vhsx3/dGrD2OeEZv+tmx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
daa8f21a20574045dcd3494a39d8d735a8e3ae5a116244bae8e3deb1f60ed930

Files

daa8f21a20574045dcd3494a39d8d735a8e3ae5a116244bae8e3deb1f60ed930
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 451KB - Virtual size: 450KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 840KB - Virtual size: 840KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE