28dfbac1d1c504382fbd1b3abd923f6c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28dfbac1d1c504382fbd1b3abd923f6c
Size

180KB
MD5

28dfbac1d1c504382fbd1b3abd923f6c
SHA1

4c19f49a0da64942441d702db6fb1d2d9d09e1a4
SHA256

25d4a44bc3ec7067083acb6cecfe252a4ba54c403386bb80fe9cc8443eb77382
SHA512

3349498ccb44dd9abb3d96c8a1ba607b170d4941cb7761683e079a658da79b5a34623c4f09a4ec5642986b22cb5a74d288e48323b6662fcf99068ed27b6a965f
SSDEEP

3072:bCmu12+aMmryBFx7Jm5N6wKU8DpHiUc6GV2/n4fv5csvKv3BKmWl53hTyFg1UVTM:bC72+tmrET8j668D4ZUn4n5csv03BKmp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28dfbac1d1c504382fbd1b3abd923f6c

Files

28dfbac1d1c504382fbd1b3abd923f6c
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 64KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 38KB - Virtual size: 404KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ktbot
Size: 72KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE