4ecf387cd0d844e415f620ab0f82fd48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ecf387cd0d844e415f620ab0f82fd48
Size

28KB
MD5

4ecf387cd0d844e415f620ab0f82fd48
SHA1

0b2bbe9b68495694e5b33f5db45edbd65e2236a5
SHA256

cb00a15112042c5455ca4eeff91f009d02dfcbcfea79d7c87e0c809bbfca7acd
SHA512

90201011e1de016e65103ba5f66547a8f355b5b34549538b0f4d11b9f5cfdad5a9d022cfa9fbc70cde35611154c1f58f9c4a3cd1a9e0327ed00966d378e7f9bb
SSDEEP

768:BY/oU81+44r7lEVZg9gbg7grgfgKo2GVomT:+n8E44r7ifkKKKmQ3T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ecf387cd0d844e415f620ab0f82fd48

Files

4ecf387cd0d844e415f620ab0f82fd48
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 378KB - Virtual size: 377KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ