e27775cb57da46aadda90060de2d7614afca4e5e0603cc96b2f48e3c03d8ace6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e27775cb57da46aadda90060de2d7614afca4e5e0603cc96b2f48e3c03d8ace6
Size

104KB
MD5

525028ee55e3a306d44006797075a8b5
SHA1

2ab528667b74e57a6529cd4bd7cabdc9045db3ae
SHA256

e27775cb57da46aadda90060de2d7614afca4e5e0603cc96b2f48e3c03d8ace6
SHA512

f8cb8032c1b7a526780f70a20598409c9a5d9fa2b17a2946149420d94c390076fc23750a3effbf150883466c2d35caeddd6103ee6b6348e53d15dcd80f1311aa
SSDEEP

1536:LSFORvzKlDowI25JhhDG3HTuPwh1ZcmNyQknppa+cYeXdmmgAQ1WImO6/R3xhH9:mFOR79w75zI3HaPm1tXkpyYAmmgAGmF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e27775cb57da46aadda90060de2d7614afca4e5e0603cc96b2f48e3c03d8ace6

Files

e27775cb57da46aadda90060de2d7614afca4e5e0603cc96b2f48e3c03d8ace6
.exe windows:5 windows x86

ca7bed2d99db7f7db37cdb4a429a66e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

ntdll

_wtoi

ole32

CreateStreamOnHGlobal

shlwapi

StrStrA

user32

wsprintfA

winhttp

WinHttpOpen

Sections

.vmp0
Size: 100KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE