893e5fb28d2b6683f5f14464216b161e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

893e5fb28d2b6683f5f14464216b161e
Size

2.9MB
MD5

893e5fb28d2b6683f5f14464216b161e
SHA1

872adb34c44b9c139098719c61e3d5d527fc6063
SHA256

15f4b32e4a5e264ecf579996f38d8eed136f5df538f5c417d64fc2c1af1a0d14
SHA512

257472fcd5375f1d3726f556a83ebf32ec93cdfc3dfc3d396ac216b46953620ef34168b955d3d203e95d20bd29149ef6692f9403c2399fe03d0970cd125c6f7d
SSDEEP

49152:SqxNrOBqxNrO5v9MbqnstLet3LywlYvoGxUSJpXG:fNNNW9aqnstLEpsRXG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
893e5fb28d2b6683f5f14464216b161e

Files

893e5fb28d2b6683f5f14464216b161e
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

bckgzm.pdb

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ