8138902b1f6aff5d20aee0b86adf0adf1558c961a3a4819e29b0023724be48d0 | Triage

Sharing

General

Target

8138902b1f6aff5d20aee0b86adf0adf1558c961a3a4819e29b0023724be48d0
Size

3.1MB
MD5

6fb6adc48fff42b757070d4a2b1b4def
SHA1

82ad05af06206a3b0bde336e802005eabf3f31df
SHA256

8138902b1f6aff5d20aee0b86adf0adf1558c961a3a4819e29b0023724be48d0
SHA512

4abe88a7c26c90a37e3121922808f8c910d703997653e511fc10e59c7796b8a13ea1f6f95bd418123352ed29ac228c9b3062fb8e954dfc5a99c543902f776815
SSDEEP

98304:kwDqT1e0fnUrekxNPyPx3sZlZ6gn3oTYiE6:Cs4nUrek/yxo6gn4q6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8138902b1f6aff5d20aee0b86adf0adf1558c961a3a4819e29b0023724be48d0

Files

8138902b1f6aff5d20aee0b86adf0adf1558c961a3a4819e29b0023724be48d0
.exe windows:1 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ