052e200f18a814466fbee6dfb3374b2011442e0c1288eba76ab46ba35ac21882 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

052e200f18a814466fbee6dfb3374b2011442e0c1288eba76ab46ba35ac21882
Size

3.5MB
MD5

7f3c0167cc177b5e59431a27eeef2fa9
SHA1

017cef4aed0f93fda44349a6c2fe22d9cc07a2b5
SHA256

052e200f18a814466fbee6dfb3374b2011442e0c1288eba76ab46ba35ac21882
SHA512

badf27a7e40fccf19d3c15e9376def4c20afe18d4f7fbbe8df088e4bb0754ccced55c51a20315e24db09a976b33045f89092cd6f71479819b197591cac28d404
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl9+6CFbtZYx/FOmNlp3hQ5zV:c+8X9G3vP3AM26CHWtFXFOzV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
052e200f18a814466fbee6dfb3374b2011442e0c1288eba76ab46ba35ac21882

Files

052e200f18a814466fbee6dfb3374b2011442e0c1288eba76ab46ba35ac21882
.exe windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 994KB - Virtual size: 994KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 386KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ