14e4d756a84a1c4bbd506ea48ab95c8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14e4d756a84a1c4bbd506ea48ab95c8e
Size

3.3MB
MD5

14e4d756a84a1c4bbd506ea48ab95c8e
SHA1

d99ac13302f98b57bfe5b2d789303108c0ca3616
SHA256

2d0d6e0a36db96b73e63a542239f816ec37314bb60d967bac1869a5f79b58d19
SHA512

6d2e6c0ee9d1b6a57969d15f5828c53d577620d8080eafeebc909ee9d09a4a80a1eb507307d5158dd421e09bb60c9e9c3801d76eb8544f99bfb70db3fb689afa
SSDEEP

98304:uXFrZRqsKPl3jIhVKh/Dkw9Qe/Z2BZZIm:8rqtPl3UKZCe0Bw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14e4d756a84a1c4bbd506ea48ab95c8e

Files

14e4d756a84a1c4bbd506ea48ab95c8e
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 2.4MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1012KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zswetvvt
Size: 880KB - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rlnnvody
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE