15b283ac7046a8e87b16cef29e5c660b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15b283ac7046a8e87b16cef29e5c660b
Size

84KB
MD5

15b283ac7046a8e87b16cef29e5c660b
SHA1

50d3be1b193884f163c29a1fcf5e1e33f16b489b
SHA256

b88976deed905c03f9f07297b66881f5054a03f242d150c1056503990a407c06
SHA512

55f0a03f965aad71f3b5a26474d7a109f3e58fab3744b668902f44ac8e2dea55527d32334567ed8c9c7e72b35e00515c93a6dfa56f905623712704cfa11ab3cf
SSDEEP

1536:MQwHfvMS0xcGxFyhQkrnb1Mq9WbDkg0VOiB+BoBcuZqZUBgVW7NYc:MnHXMpxcGxFyhQ0bOqYj0M5OyqqM7NYc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PHOTO-GOLAYA.exe

Files

15b283ac7046a8e87b16cef29e5c660b
.zip
PHOTO-GOLAYA.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ