902cca5ec4d38a9b5b3b75146f7611dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

902cca5ec4d38a9b5b3b75146f7611dd
Size

83KB
MD5

902cca5ec4d38a9b5b3b75146f7611dd
SHA1

3af737499486c9ce72eda0e5cae1ba2ff0d09b8c
SHA256

b96b113191295c7bbcd88fba47409cc44fdde87779ae2cf3ebf0401f1f658e53
SHA512

a6563f96b66adffa0a78f49b8ace23bb859f5c950647151c4e584c2c6b286e192eb9214ac4f1a761d06603ead428214823d744e72c4a5063586dea228349b166
SSDEEP

1536:dYIzjjXbgNfTdEstECiPfvDoEPUUWtIfXzKyDEO07VtUqwqMeH8lhxI9:dYgjjAZftEC0kiUUWte2YEDfU/YH8nx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
902cca5ec4d38a9b5b3b75146f7611dd

Files

902cca5ec4d38a9b5b3b75146f7611dd
.exe windows:4 windows x86 arch:x86

d35966244f3e55976bc179d962bce114

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpCommandW
UnlockUrlCacheEntryFile
FtpOpenFileA

kernel32

ExitProcess
CreateFileA
ExitThread

Sections

.text
Size: 59KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE