59df4297869965c7990580ac2deab430 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59df4297869965c7990580ac2deab430
Size

21KB
MD5

59df4297869965c7990580ac2deab430
SHA1

04f572a01c95436feb0a5ee8db98b235de1c15ce
SHA256

e08a90934a018ef14c88d73bfecc2deba87e9752cbb9a425d195f7d432f246bf
SHA512

adf1c0c7839aeaa6f4a7dd99f58e8beb816b280909b3c731d9b897205ce1326d1f4dd7a5bbf6c38851cb811127b14ed44536329f3a717e118a5693769680f4c8
SSDEEP

384:UlfsE7BPf5gJGUnNFy1K32B5APSot3F70ALySSyF7PIXXTQhZMYd:UeUfms4KMF70kZSyF77MYd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/sfolder.exe

Files

59df4297869965c7990580ac2deab430
.rar
readme.txt
sfolder.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

data
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

data
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
新云软件.url
.url