1f4e57c77e9b750a3f32741178ccb1e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f4e57c77e9b750a3f32741178ccb1e7
Size

1.5MB
MD5

1f4e57c77e9b750a3f32741178ccb1e7
SHA1

7ac4e317d1ac1861af24a42d4bc1ca27bb926db0
SHA256

048e5a16f52e2a1b8769811c24ffb5dd12719d5666f2721c3f916a168814ad4e
SHA512

492b4e96418158eef2823ff1227481a92f4a01d05773f83a59d46ce70f4258e445a1232f573c823f3c1f3276a625a059b52e1ef57a12244d6985a016765fc569
SSDEEP

24576:ounuxi3o3MVxOI1/DFLkACNz70EoDSN1ckH3anm+///gPCfoKXC2uxPYE/M/qT3q:ouj48VccFLkr70EfN93mBAvKXC2oYE/U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f4e57c77e9b750a3f32741178ccb1e7

NSIS installer 1 IoCs

resource	yara_rule
sample	nsis_installer_1

Files

1f4e57c77e9b750a3f32741178ccb1e7
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zwt
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE