4a252d2aa7b44f849b5360b91c22c8e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a252d2aa7b44f849b5360b91c22c8e9
Size

116KB
MD5

4a252d2aa7b44f849b5360b91c22c8e9
SHA1

a5b720edeaf9192ffe696ea02cf73c819cebd159
SHA256

6189ffc8530d6216cc2583375c2fe00d6c1b6e62425e34cc4c13264fcbc04071
SHA512

d841bec3ff24e2f1121dce5a610bdac5a659415f0fda6eb79f61fd01e6861cdee7ee0ad6815cf08c42a9dfccc8e22bcb2f91cee3e790d01c0037c7f58fcfeeec
SSDEEP

3072:LsrbFcp/BRgCKk6rzli+NK0+5T7ZYNSh5ILKRpO:4rRcp/BRgCErzlRotTEopO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/RUSSKAYA-GOLAYA.exe

Files

4a252d2aa7b44f849b5360b91c22c8e9
.zip
RUSSKAYA-GOLAYA.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ