2dfb40da25649440e5c251d4389483e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2dfb40da25649440e5c251d4389483e6
Size

189KB
MD5

2dfb40da25649440e5c251d4389483e6
SHA1

91bdd99cab4f2d4d955efbe265d418b41abca0c8
SHA256

41a16a94b485fb3c62a5a8999cad531e1c9c31d35c9f6acc36a3b856b5017a5d
SHA512

359b5c0197c0b431ad6fcb40f9632195a87e73eb709fdbd00db50f049af9ff9fb6d86902aeff99e500700f2ffd2de7f51cc7c8dff94e23cfa647f21985fcd3aa
SSDEEP

3072:RWfFkKvo947QGd8wgeHjZYowMDJMfoVAlJp+BWhj5ZDu7J4FrF:RWtkOS4xaHeH7wMNTuzIMhj5ZDu7J2F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/pwl2icq v1.1.exe

Files

2dfb40da25649440e5c251d4389483e6
.zip
Readme.txt
pwl2icq v1.1.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

��0
Size: - Virtual size: 324KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��1
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE