496ea884d40f0f54e1f49ded8f129241 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

496ea884d40f0f54e1f49ded8f129241
Size

54KB
MD5

496ea884d40f0f54e1f49ded8f129241
SHA1

c597b53ebfa2ba75a164bb8a12bfbbb346a66a74
SHA256

3ba4292fc54257f47869e6a688caf94f3af37bd59cab6856bd43d9c6de53166f
SHA512

99826de44eb3a672b7d8f88045855a3850c50b3d281daefa3848b949b9a5741e3113960a446c74b71e2cdf153ff9663e8583f6c52edd872fe2f8e9a88fd3eb36
SSDEEP

1536:aXNUUgi6pq1ZQt0VGLNQziaVbkr495+cehIEp:YYqvS0Vt9Vbkr495+cehIE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
496ea884d40f0f54e1f49ded8f129241

Files

496ea884d40f0f54e1f49ded8f129241
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

}/|&$U
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ