68a48402e17bec8c5a7466f85b9cea9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68a48402e17bec8c5a7466f85b9cea9f
Size

113KB
MD5

68a48402e17bec8c5a7466f85b9cea9f
SHA1

8f005e9f3b547ab714f205fe5b90dc6e475f51b7
SHA256

e3a0e75b122fd0093efcb6cc0d1bd291aaacb591402ffd6e87eb0b148e923984
SHA512

ebaafee8f1320853625afdb75bcff91562b9a59efe6d1589fa9865bf74d3e32042f9847baf8628998bd8cd99c122f3d3db1442fa5fd078d2c8c23e3150e33909
SSDEEP

1536:1oNlKL1VIFW3IgaW1UJ4CflguyljCCZwoKqkvWfi9If/pESsq3FAal/6MnybDrRO:uaL1WSIZWsuuylvngvmi9IzzyyA3Gr4e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68a48402e17bec8c5a7466f85b9cea9f

Files

68a48402e17bec8c5a7466f85b9cea9f
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 324KB - Virtual size: 844KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE