279aba64684bbfbe4e376bf8eff74e97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

279aba64684bbfbe4e376bf8eff74e97
Size

512KB
MD5

279aba64684bbfbe4e376bf8eff74e97
SHA1

ee04f1d966e8853c04fe37402166e32e05db2f69
SHA256

a0ef41491c5fbfac098b9d468a56095c02abf9cb9b6864ac3a05f276bfd96824
SHA512

7265b05bfffa3beea25eac32501cf5dedd6f20ea8f2eceee88782d743ff14bd5373b69aec580d5f2033fe150c4dc3c752c76f124eca6b3be9b8080a24e92c782
SSDEEP

12288:6Lw+GWuJXrLs/ivt87JuIdZehI5C9pifSBr/mc:6MPlX/vt87QIL553KBp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
279aba64684bbfbe4e376bf8eff74e97

Files

279aba64684bbfbe4e376bf8eff74e97
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 801KB - Virtual size: 804KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 351B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE