4beb241583207d12162fb3f32aed9465 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4beb241583207d12162fb3f32aed9465
Size

392KB
MD5

4beb241583207d12162fb3f32aed9465
SHA1

309d5d5ece7640e21015aa3bc3a0344d3f82769f
SHA256

0528d24edb97090812c58cc42289d46e1e9678e161cd1c76ab1bfeff0ae9a033
SHA512

daadceeb4e233989a63cc32827540a9b41030be0e3985a14de5368029f2cbb6481f768846927fb16852e1c26653eaccb01b433405b0300f3df0f9b8d32d21694
SSDEEP

6144:3/26kJC3oghja3DpYGaYxKrNV0eS08eMQTtDiL5kdPMoY2lGtk6KJKoUiJG/1GJq:+C4gNobaYoN2eS0ZZmuGoY15qKGJGN2o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4beb241583207d12162fb3f32aed9465

Files

4beb241583207d12162fb3f32aed9465
.exe .vbs windows:5 windows x86 arch:x86 polyglot

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 398KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wtq
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE