5afb86b66514e6612352cbccbbe3c056 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5afb86b66514e6612352cbccbbe3c056
Size

1.2MB
MD5

5afb86b66514e6612352cbccbbe3c056
SHA1

4541685370735d3e1ccccc5d07ca89c35426c2ad
SHA256

e81e2b45b3e5ea80d6f6dff5986ad90542d838ded061334f81ce4fad74b6623f
SHA512

0ff1ec99820a2ac6b132ffd2ab200e27e0ae3e7688d0a716dc43e7a064095c150826a6a01dedd6d84a1b1a9624cf4713d1047fba4abb129d6976f2b7a1f0e2b4
SSDEEP

24576:9w6sEunlNYknhW9ORXNWHoGlHOcGECG1JRNHcJhT7:9EEunlxINIGluKR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5afb86b66514e6612352cbccbbe3c056

Files

5afb86b66514e6612352cbccbbe3c056
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 328KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1008KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

exejmnfy
Size: 832KB - Virtual size: 832KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

blxdarbz
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE