2674cd489e20a57efc14bbc00ea58665 | Triage

Sharing

General

Target

2674cd489e20a57efc14bbc00ea58665
Size

1.0MB
MD5

2674cd489e20a57efc14bbc00ea58665
SHA1

1fb2525cbd2693320e0e487f8bea1c40ffd60b10
SHA256

16bfa624c9b9b2fbddd122baa10f87d6521d6fc99b2b191ec0781a7d3fcd1d15
SHA512

1ad3614e8874d0a898dc2624293215238920287adf9b06287c1f656cbd82de84c0a9c72d70e46a39aec23187e455ea5a4fd0dc220ae80689eb0f67ee47b19b6a
SSDEEP

12288:5TrPI5TGD+A0qj2/AXVHNDeDCgdzftDKSV5CFvELSb64o35bqzPc/dXAjcsPL++4:RIZFA0MXgpdLHnCTbpcwclCMg8teCpn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/[Setup]_HackFullCF1066fixXtrap.exe

Files

2674cd489e20a57efc14bbc00ea58665
.zip
HackCF-Vui long doc ki huong dan su dung ....url
[Setup]_HackFullCF1066fixXtrap.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 932KB - Virtual size: 930KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 462KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ