9a1f39a4536db062c3355b750c39feba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a1f39a4536db062c3355b750c39feba
Size

7.3MB
MD5

9a1f39a4536db062c3355b750c39feba
SHA1

19b057d0fe004c7d5580c3ff7e842481b40eeaaa
SHA256

1c8fecebf76bde4dda30dd70838a094121e551ec7479fd73e3a57d938f6a5b9b
SHA512

b21189d797cb8bdc4b2d3c9d2f8d2b7119123ca2302573aba76053065187c118b528a2de79a41be815cb9637103bd0486dc14b9ba2542c3cf64de30a1da1b370
SSDEEP

196608:vdJ8pFwbT42F41QjCpu2utA7GeZK+XWu3M1SO3ZsXE0192F:vcwbTBoQctWA7K+nDlB9C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9a1f39a4536db062c3355b750c39feba

Files

9a1f39a4536db062c3355b750c39feba
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1.7MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ihhrngun
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lcmtomqy
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE