48ea5af3021005949fd9b3491cefabdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

48ea5af3021005949fd9b3491cefabdf
Size

949KB
MD5

48ea5af3021005949fd9b3491cefabdf
SHA1

3061d7eef901d5e5b98ef91cab6f84b4e9a2e5e6
SHA256

557374f0d49f7e03b67c6b3b185f92801d4b035900c42baf4d226964ff7310dd
SHA512

8dbbf47387c293ed17a2f272e48228233a52c9e083be49e24ce5359ceb4d05ec4643c2c10ed54380d6b4e445d124f5579a1e1ed34d0afd5825f825d11330b079
SSDEEP

12288:dnkq1q9o3p3WIS6GBj99VzQ6CUoX34ztGd6Ek4XddqX9K5xVhsqJ1O323ty+yx7V:dK6G5/CUsetQ6Ek4XdVAGe+eyA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48ea5af3021005949fd9b3491cefabdf

Files

48ea5af3021005949fd9b3491cefabdf
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 284KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 384KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xur
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE