6120703101b887420b3c0e6df2efc07f974ff047facf0ab07a96d3e8e43c5c93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6120703101b887420b3c0e6df2efc07f974ff047facf0ab07a96d3e8e43c5c93
Size

298KB
MD5

40690b323527bdd5958e44358e1d4146
SHA1

19cc3c8a9e18c2678a8f8a3c0c7bd8c0c60f98b3
SHA256

6120703101b887420b3c0e6df2efc07f974ff047facf0ab07a96d3e8e43c5c93
SHA512

7c73afafa1bd39f88371bf2c58d2992a02c1cd3945cd01617364f29fe716f67ecba8010b24eeebf93d355afd3769e2f86129d686af496f662b2c7ee8006939b2
SSDEEP

3072:ILFxddmHzprnQslCYIfW1cT63/HSqsy6nsq/Jp5S6wmBQhlxc5:KozxnV3uC/yIO55SFp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6120703101b887420b3c0e6df2efc07f974ff047facf0ab07a96d3e8e43c5c93

Files

6120703101b887420b3c0e6df2efc07f974ff047facf0ab07a96d3e8e43c5c93
.exe windows:6 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 150KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.!rc!
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mackt
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE