cfdfdd37c1567fa8e327b39f1d44c118ab970fd73b29207716fa363e452b8987 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfdfdd37c1567fa8e327b39f1d44c118ab970fd73b29207716fa363e452b8987
Size

399KB
MD5

bb9134c4e7ab9adf313200d92498219e
SHA1

9d550005a0ebeddc0d44d61c3eca8de959cdea7d
SHA256

cfdfdd37c1567fa8e327b39f1d44c118ab970fd73b29207716fa363e452b8987
SHA512

97201addb5d72e838990b72c909bbcfbeed9b3d4265a9472686cd4276132b5e5234ae930acf15fb957d757922aef6de814ba6277f45b654912d0bbe391f5448e
SSDEEP

12288:ebjp/SBpOvoXDfJnOUgNxfJeEWwV8ZkiS3A:MjIOi1nDgNxfJeEWwV8ZkiSQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cfdfdd37c1567fa8e327b39f1d44c118ab970fd73b29207716fa363e452b8987

Files

cfdfdd37c1567fa8e327b39f1d44c118ab970fd73b29207716fa363e452b8987
.exe windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 346KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE