facc892bab57ba7b10fa2c6170577f45137ab714b4a0622187344e86dde0dac9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

facc892bab57ba7b10fa2c6170577f45137ab714b4a0622187344e86dde0dac9
Size

439KB
MD5

55a409c02f019b779c6038856c7c1bdd
SHA1

a66e697c962300f9c6486f6456617817c24dc67a
SHA256

facc892bab57ba7b10fa2c6170577f45137ab714b4a0622187344e86dde0dac9
SHA512

6a5f8ea93617fff8a60c0e52d6293947473ee95e4cf6cb0e1f07a9ef36d944279dd2a5da216ca33b2a8daca5ea19b7c6d5e85753852657ec799fd94c812c833a
SSDEEP

12288:fdQ5w1rLeeTkJ7fAYb51mEWPE89T8ya5ANe:1B2751mFQyBe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
facc892bab57ba7b10fa2c6170577f45137ab714b4a0622187344e86dde0dac9

Files

facc892bab57ba7b10fa2c6170577f45137ab714b4a0622187344e86dde0dac9
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 347KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mtyrz
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rqbvwz
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_MEM_READ