4d6150f4b38540c71c3187ae4e86428b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d6150f4b38540c71c3187ae4e86428b
Size

3.7MB
MD5

4d6150f4b38540c71c3187ae4e86428b
SHA1

732f77dbdc32828f074c7f8865886adbcc74bacb
SHA256

b3dc0b5ea954f3b4c9b3d873b92cf95d8cede9093d707a491d4375f848eedb83
SHA512

75c8fbfb6f91dd5b0abd86549a4fa10778e04e00c2f69dcf4e3063662a6462eb2c39a5a90e66fd661e750ee66050875288534715f46af1a8b9a53d1ebaddb890
SSDEEP

49152:gms1tXCkmQ/kg4AyN24QPWbg+ZtJh2CuYyau+QWyaqgeOBl5rJVrhYEFWdlon1E:xNlQB2vkCuYbu+QeneOBzJ/ZzE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d6150f4b38540c71c3187ae4e86428b

Files

4d6150f4b38540c71c3187ae4e86428b
.exe windows:5 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 60KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 439KB - Virtual size: 502KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wxczpcle
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pncsmgji
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE