4d51bf94b5a33525be6409715b4f5778 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d51bf94b5a33525be6409715b4f5778
Size

81KB
MD5

4d51bf94b5a33525be6409715b4f5778
SHA1

3e60f4f1c0b53a742afa8f256b022f13ce2903ed
SHA256

e1eedcf23528e88623043175bd86a28220bf0e80f959d272607b9a67d5dbd700
SHA512

f3666eb1b0633eb0739f7df7def3a08f9820b3d3e6ed6c9f70007ad50e1efeea5ed4998347cb95bd3994a5dc0c82f59f1258da3392aeeaebc12b67f0892c46d6
SSDEEP

1536:yBZdGLuWJpm2aZDw3qv2F3ORb1IcIrvuwSFpl6N00QpzXBHJ:YOLI2a+f5zv2FpnRXBp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d51bf94b5a33525be6409715b4f5778

Files

4d51bf94b5a33525be6409715b4f5778
.exe windows:4 windows x86 arch:x86

647b2d25b4821905b4195ff7a6455b54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress

Sections

.hkk
Size: 512B - Virtual size: 112KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hkk
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE