52b2e90e3454ce773c5b4318950bad73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

52b2e90e3454ce773c5b4318950bad73
Size

58KB
MD5

52b2e90e3454ce773c5b4318950bad73
SHA1

24070e328d57c68b9611f175d26479e38922d31a
SHA256

39fe038882846593bc4f0061b140dc6f4a67de66ef6803489f9e49f9d9a42b9b
SHA512

0c884398dbdda894016ba05e10b7f7fc8a3e0bfd9a494fb4ca58e0dcf6f31c96265b2076b7af8a81a1f67ecfc826d5e5d46c5386397604d11f2b768e2f95c885
SSDEEP

1536:iP368sIRNdSxKaDUI95lb6ws4/myCZan+5xzO:y368sOraD3b0wz/TCZ846

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
52b2e90e3454ce773c5b4318950bad73

Files

52b2e90e3454ce773c5b4318950bad73
.exe windows:4 windows x86 arch:x86

148bf55ceb3e5471ef5f9ffc2bb75e2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect

Sections

.XComp0
Size: 55KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.XComp
Size: 968B - Virtual size: 968B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE