c61ab18a57ceb118900fd7565a55749029d346bc5b2618f50439aef5d55e9e90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c61ab18a57ceb118900fd7565a55749029d346bc5b2618f50439aef5d55e9e90
Size

724KB
MD5

2bb3dd261b30e08239b6764b1860e863
SHA1

ff541b5c454a13ad9f63e7095974128f58f0c55d
SHA256

c61ab18a57ceb118900fd7565a55749029d346bc5b2618f50439aef5d55e9e90
SHA512

768507d190c27e820379f0e2691c2e1867f997575fe676a3332cf43b7f6a89fc8bfd8999c0eba04fbc69d0fdd6a4af6654ebf57b1899a6e87bacfd094d903f8a
SSDEEP

12288:3JeCaAE6OfnMfXukvingf6spM/Y8AjDFAqz3R+KNd2NB:ZeCz+kKgE/Y8Ajmqzt2NB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c61ab18a57ceb118900fd7565a55749029d346bc5b2618f50439aef5d55e9e90

Files

c61ab18a57ceb118900fd7565a55749029d346bc5b2618f50439aef5d55e9e90
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 44KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uoybfuge
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dnxcozyp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE