49ed808ac275be47158d667e9185fa15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49ed808ac275be47158d667e9185fa15
Size

34KB
MD5

49ed808ac275be47158d667e9185fa15
SHA1

8727c01d705eaff726081c27b19e1e217380615c
SHA256

faf77e59b06d0c22f4363d432b3aca1882abe67912bcbb8a2f777d60d849ede5
SHA512

b3103bf2649c43c3496876753a354a817fd7ec99b8c0f8bd458057c92164c2dc1cfb74050f17e0f9d216349b878ca2ad6566eea1872e8c72b51fe2ed5997f0bf
SSDEEP

768:VF2SezQh54MCwksEaA6CnR7IUcqyX0jivpj/Naop:/v54MYR7ptHyKspjcop

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49ed808ac275be47158d667e9185fa15

Files

49ed808ac275be47158d667e9185fa15
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 16KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yC
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE