1bd92e0fda4acf8a0b0f3a236afc95f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1bd92e0fda4acf8a0b0f3a236afc95f1
Size

718KB
MD5

1bd92e0fda4acf8a0b0f3a236afc95f1
SHA1

5c17fd4e8db6bf28a05335ad3e668f4c6ce182c0
SHA256

33a69a422961fc224818c6c87400c863149ba098f56e8168e7f1591e1e52cfa1
SHA512

f4403ef1c03155e3dc0ec8eba0648ba66b821a96a1310e1d886f3a4000626573b7eb9f2a844be2dade1f09f1ca4107d2fba11ae4aca66a4416eaad2669221a3f
SSDEEP

12288:oO5W5wS4Mw3j3Lf2sZvtmhAlIy4SpsTkjJ6IxhAZU3i:hrhdTbf2WV8A2y4esTkjYCa7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1bd92e0fda4acf8a0b0f3a236afc95f1

Files

1bd92e0fda4acf8a0b0f3a236afc95f1
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 12B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 619KB - Virtual size: 621KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ynogflu
Size: 4KB - Virtual size: 80KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE