0cd2bac999de9ffc5e7734566f1cfbbcdc6f6c73c5b0d9f097fec2a5db264e2d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cd2bac999de9ffc5e7734566f1cfbbcdc6f6c73c5b0d9f097fec2a5db264e2d
Size

617KB
MD5

24888e748e1698fd95f8ef74791d65ce
SHA1

9598da00d1cce2e0c66cda2dc1720083a7ff2cb8
SHA256

0cd2bac999de9ffc5e7734566f1cfbbcdc6f6c73c5b0d9f097fec2a5db264e2d
SHA512

21fbb602322e63fad0185ec8d2b9e9cbd5c59020a081a8c843f46fc5e66a3cc2dba0426e4d0464e6fbaf24e619bf6346a5ff2b95025c25c2020210824e355d47
SSDEEP

12288:CvVIMb9J9wNYOzKllW8GF2GFDRFJRk0Fwou9vb0uc/26BP8ZnQ1aIjSVb9SzgOsz:CqMkYOzKlY8GF2GFDRFHt4UgOxe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0cd2bac999de9ffc5e7734566f1cfbbcdc6f6c73c5b0d9f097fec2a5db264e2d

Files

0cd2bac999de9ffc5e7734566f1cfbbcdc6f6c73c5b0d9f097fec2a5db264e2d
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 525KB - Virtual size: 528KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mtyrz
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rqbvwz
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_MEM_READ