4c5d2d1473ac22579139df9e8588137a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c5d2d1473ac22579139df9e8588137a
Size

287KB
MD5

4c5d2d1473ac22579139df9e8588137a
SHA1

0a4cba3950e2237c3c24ba532d2757ae6c6f6d98
SHA256

b8a7812a984a7c55cf3d082cb0112b7fdc9d79ed9f1279315d3a7eaef2523eff
SHA512

fdea8a20c7b6fec6184fd30bbc6a60abf4163fae2bec9ba313df50546f8b0b530aaaffda8d9ddf0b236d53a7ba38724b18dfa59d7571bd7fdf82dc803d70ce32
SSDEEP

6144:kUZcXZbcJLpPVxIip6YPeTgPsrw2uJtFuia1A6aVq3:keLps2B2Txrw2iR/6a83

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c5d2d1473ac22579139df9e8588137a

Files

4c5d2d1473ac22579139df9e8588137a
.exe windows:4 windows x86 arch:x86

98c88d882f01a3f6ac1e5f7dfd761624

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess

user32

MessageBoxA

Sections

Size: - Virtual size: 19.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE