54d69fac7a14d3c5ac8837cc3338e63e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

54d69fac7a14d3c5ac8837cc3338e63e
Size

865KB
MD5

54d69fac7a14d3c5ac8837cc3338e63e
SHA1

93b6076a2b924b3bcfc36a74f71d2b55409f652f
SHA256

7b9e74c582f3224f45d262ef5a7218dbfd51da8c7c97da11de5c2023b62939ba
SHA512

6679b54364f54614213c9a3350fbde5322d8a09209005c31964b5f1ba1617efc15990eebd0da24f9c7d148fb4c77f4cd5f909d628b885d3093ee50364eda6d0a
SSDEEP

12288:qDVSn1uXVlTb95n1WjFTGFDZ62DxJecVefnBV8qpz/DunqKKNFzQhFyb/c40g1EY:Lgn6tGFP6cVEnH8KfKKNFzRE+1kE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
54d69fac7a14d3c5ac8837cc3338e63e

Files

54d69fac7a14d3c5ac8837cc3338e63e
.exe windows:5 windows x86 arch:x86

94dc2d736654d21e365515e02107072c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA

Sections

Size: 251KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wofwhjic
Size: 598KB - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rhktetvh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE