655d12f42102a021c207202b178f4372 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

655d12f42102a021c207202b178f4372
Size

1.4MB
MD5

655d12f42102a021c207202b178f4372
SHA1

d9289f4edeabd6c167be97b5ce237a86a6834448
SHA256

122e63d9ea817bb333198d3cc1fde4d8dfa41049cf920ee584639c4a62951b4a
SHA512

898f8db29e32aaf39eefc70ec5899c3b8ef34b2e349b0ae67a2920302b1213dcbb7b5852bd5cd592e8358c13f4d6e51e69d65cca0e3a74496deea79a4ad1e161
SSDEEP

24576:1PRXf7a7FG7TjNYNrIgoQ9vr4J1gO26M5fceQDPxY2d8VFF5uiA86nG6FencR4tB:1PhfpeIxQ9z4JiOef0xJmuZAncCtQY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
655d12f42102a021c207202b178f4372

Files

655d12f42102a021c207202b178f4372
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nqcdawxn
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pqukrrsy
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE