16ad4d43b7af293cf043eaea47f1e539 | Triage

Sharing

General

Target

16ad4d43b7af293cf043eaea47f1e539
Size

3.9MB
MD5

16ad4d43b7af293cf043eaea47f1e539
SHA1

4ee4032e211c3a73e1f51d413aaec227330b75af
SHA256

84984691eaaa25532f248628b4b32d6b3e2927bb84e7f42155ffe5f7abfbd75e
SHA512

06fd8205c8943056a327df5096134a245741118a3d6bf791ee35142cc7f3744809051803279544c84e776934e27379715cd204658d1eb174bb02e43d866954d4
SSDEEP

49152:NJ3eK3E7NSpHceAcmlcURiy8rfnptKNhi:n3Ekocm668fCNs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16ad4d43b7af293cf043eaea47f1e539

Files

16ad4d43b7af293cf043eaea47f1e539
.exe windows:4 windows x64 arch:x64

dc12932426806b6b47a373d7ae42c21d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

mscoree

_CorExeMain

Sections

Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zmayddlj
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

githuyjy
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE