4099f127b2f40226761a340be390983a7075efd05c5f212df5770a812c252a95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4099f127b2f40226761a340be390983a7075efd05c5f212df5770a812c252a95
Size

2.5MB
MD5

1e91dc5d5c801bae120c15776a34e399
SHA1

a8ba938877e1a3d942e5272734488b326fcf50c4
SHA256

4099f127b2f40226761a340be390983a7075efd05c5f212df5770a812c252a95
SHA512

e0948c2e2cfa3c75f84916b25e7205e866e608f8e3a89e5d533ae7519e409129478f9d0c9ecfeed79682d55f3d715f46f2ad350a7f43019718b9eac321b0fb9b
SSDEEP

49152:AYuPOgwnc3QUxWL/AFDBcEhm+fpgQ2pFncF3dtaSCrL:OP/gYWzQBjhm+fp063dYr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4099f127b2f40226761a340be390983a7075efd05c5f212df5770a812c252a95

Files

4099f127b2f40226761a340be390983a7075efd05c5f212df5770a812c252a95
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4KB - Virtual size: 217KB

IMAGE_SCN_MEM_READ

VProtect
Size: 616KB - Virtual size: 616KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 1.9MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

VProtect
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ