49d246cf3b9ba38e8149fe94a6ef2277 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49d246cf3b9ba38e8149fe94a6ef2277
Size

11KB
MD5

49d246cf3b9ba38e8149fe94a6ef2277
SHA1

b7e135ab0e87b23c5a19c30a2f3c54857144370f
SHA256

381c48d0a6afea839d55f8230d009bb2723fc8a1921e48feab1035b3e3cbde41
SHA512

2fc95e03a62ee311e9dab3275a0874fb92fd507bcef1b70b63e86945b3d6cfea86e73f25d708ec3c72f00e9149839851cf8c7ac6ef6698a3f47f236546ff7838
SSDEEP

192:QO7YepX14S/lMM3ghsy/1wSVotPsWLLCOM5uojp7jbm6MPQFK:Dsm4S/lj2/1RoxsGhMcojpdMos

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49d246cf3b9ba38e8149fe94a6ef2277

Files

49d246cf3b9ba38e8149fe94a6ef2277
.exe windows:4 windows x86 arch:x86

028ad07e6447616cbbfef8fe4f6c232a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeResource
SizeofResource
LockResource
LoadResource
FindResourceA
CreateThread
VirtualAlloc
HeapAlloc
GetProcessHeap

Sections

.data
Size: 1024B - Virtual size: 518B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ