5b1ba4ddaa86f8a76b15aa5c757d1530 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b1ba4ddaa86f8a76b15aa5c757d1530
Size

1.7MB
MD5

5b1ba4ddaa86f8a76b15aa5c757d1530
SHA1

6a6019596589387ae8b27daf21d520c403a3e677
SHA256

3daaac5939b68c97f240d22bb9828bea91e8b70d0d953025b6e44f0144560eef
SHA512

5f9c5a641afa39bce1eda143e8cfbc710dac984747a87c2f9ec42f292b2116b25571be056875a84e5e47020453c14378be34efd86ead0c44c4b6ff1aef7f9eac
SSDEEP

24576:d3pSyRe46zxuDOTWWINhHFNvHcNoJ+1R7pPMINLPeHHlky09BTbRIGP4yQyQBh+3:dZZReDjWFpHiTPdLPTLLRhgyOj5l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b1ba4ddaa86f8a76b15aa5c757d1530

Files

5b1ba4ddaa86f8a76b15aa5c757d1530
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wxbxkode
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mafbjutk
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE