299182f5b3c3f116ee06fa7e2dd8c130 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

299182f5b3c3f116ee06fa7e2dd8c130
Size

2.2MB
MD5

299182f5b3c3f116ee06fa7e2dd8c130
SHA1

ed3caac65cb4349832e2f4b73fc96f8efbb49464
SHA256

afd843f3a6cdeae11ae25645901f8876610e6ab91d64e2dd7ece45b59678b446
SHA512

f801062875b582617f90b5bc59c1daf3e44b4d008811beeae4d214161e7ce70379b06e84b82a51a3caedb9774b291a06391e45cd61ffa828f13768a9c24c2419
SSDEEP

49152:923g5/bqvWcYeHKFrFJNZWvTcumr6bOPp1XkeJDoaT:Ig5/bqvWcYWK3LZ8cumr6bqkE7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
299182f5b3c3f116ee06fa7e2dd8c130

Files

299182f5b3c3f116ee06fa7e2dd8c130
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

\C"ND
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ