674df6e48ca5c23d7b603fd1cc039221 | Triage

Sharing

General

Target

674df6e48ca5c23d7b603fd1cc039221
Size

260KB
MD5

674df6e48ca5c23d7b603fd1cc039221
SHA1

01519c431315ffeb69da6b5825dc1339d3d4c696
SHA256

465562f3b9c107f6f748bef528785310e41c08f8fbc6a8111f3bf5e9ed790f48
SHA512

1c16490d9508b7a0363dbb981e5162304a8eceeeecfb75ed4c251013e67f7a9cc5fe41df846328632fa7b7d8243231155297b7abd67e2931d4e3aa76bb8c0e02
SSDEEP

6144:M+9ZQZB1NuhVJ2VtuRtJ4f7kYdnz6/Fmkx6U3YVjk:PcZB1EhVKtuRtM7kYdu/kkx6i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
674df6e48ca5c23d7b603fd1cc039221

Files

674df6e48ca5c23d7b603fd1cc039221
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

?LowLevelMouseProc@@YGJHIJ@Z

Sections

.text
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ