3b6d0e74a568927ae2478b28ce28570fe108ff210512845ca9a38ed31b4ea69e | Triage

Sharing

General

Target

3b6d0e74a568927ae2478b28ce28570fe108ff210512845ca9a38ed31b4ea69e
Size

15.1MB
MD5

ddb458f692c89f412ab222d733614185
SHA1

8347f52f771b8fb1a00b644cfe5a05d6e7a71aa2
SHA256

3b6d0e74a568927ae2478b28ce28570fe108ff210512845ca9a38ed31b4ea69e
SHA512

968675783313154a1dc9224b325902455a3f19959af857fe826498e9eefc6e6ed17300e65703324ca6735cb74f1fae8393c7a2a17583cd438e32afed10a98f10
SSDEEP

393216:GoFYZSq62o4vyP2a+zKZs8Qs+bU5IE38bmFgfKZUzud4XSRsrWVQvapEDetLFb7v:dFYZSoo4vyP2a+zKZsRpbU5r38bmFgfc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b6d0e74a568927ae2478b28ce28570fe108ff210512845ca9a38ed31b4ea69e

Files

3b6d0e74a568927ae2478b28ce28570fe108ff210512845ca9a38ed31b4ea69e
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 911KB - Virtual size: 910KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.enigma1
Size: 13.8MB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.enigma2
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE