59519a3cae58fc9822c6a09c8b053e96 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59519a3cae58fc9822c6a09c8b053e96
Size

417KB
MD5

59519a3cae58fc9822c6a09c8b053e96
SHA1

5d5aaa469e8d5926a7b86fd94fc2b2985a241a63
SHA256

0f97e840681abe2dc81fe06122a97044deca324b085f323fe07cf3edd71946c2
SHA512

c1446effba77b643b203764d69afc52bc4058fe9d8b016dffdf516c762478d71183b152be67de5364d9ad4351896fc4a46a11f4919ec68764cd00dc5a00df1f5
SSDEEP

12288:UrnHt+Sr5WMby0a3WmAedpD2FrL47Ww2q8:YN+Sr5hKWmASpD207Ww2q8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59519a3cae58fc9822c6a09c8b053e96

Files

59519a3cae58fc9822c6a09c8b053e96
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 120KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE