44e91bcef3321a4af33402685a9752b77e6b29c66b381ee9c3d24b1e7aaec166 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44e91bcef3321a4af33402685a9752b77e6b29c66b381ee9c3d24b1e7aaec166
Size

2.9MB
MD5

8d5d837db3ee699482a37acc2ead8515
SHA1

b13e5edd90925917a2211ece17c656806c9e307a
SHA256

44e91bcef3321a4af33402685a9752b77e6b29c66b381ee9c3d24b1e7aaec166
SHA512

2d9c6e931d4785b1bffa882c2f62b4587649029a1d78d09a5596f1bc4a18854804a4d64aaaf27d13745e4db81572179677c223b8d07bd22ab7fd4e05f8be8b25
SSDEEP

49152:9S5FoAS7Ecrf1pXnW7TtQs5sN3RTNF+FMgXENF+FMgXEndSkg2:9YoAE7PXOQk0TuQuLkg2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44e91bcef3321a4af33402685a9752b77e6b29c66b381ee9c3d24b1e7aaec166

Files

44e91bcef3321a4af33402685a9752b77e6b29c66b381ee9c3d24b1e7aaec166
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 132B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ