66a5414a0de9d4d3864f9606978572e9 | Triage

Sharing

General

Target

66a5414a0de9d4d3864f9606978572e9
Size

95KB
MD5

66a5414a0de9d4d3864f9606978572e9
SHA1

971c159b0a5af454b3400080e9e4f706b7d295d2
SHA256

e23392d46c6575bb1f7819a630717074773fe1fa8dad6bb7a6fd92847a4900db
SHA512

8afbcdcbcb9d0f87a68839cd14224c8c49e08ac8a9bebf42ad4a4740b03d5c54b7c534b4c8f1e2481f29ae595125f36993c059368c962ac1b4eb7ce475fee48e
SSDEEP

1536:YyeLQnk+1jlkCI1A+vhUBOhwWiiksVUjGSEUwrgIQPMbve:Csky+1A+vhUMNibq6GSvQzUSve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66a5414a0de9d4d3864f9606978572e9

Files

66a5414a0de9d4d3864f9606978572e9
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 660KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19.3MB - Virtual size: 19.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ