a1a464aee64d0d790a0cc5b1d630d3d799e8448e40894755bccad2bdce08857f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a1a464aee64d0d790a0cc5b1d630d3d799e8448e40894755bccad2bdce08857f
Size

1.3MB
MD5

d37838ebd45896ec25824e8118f0a021
SHA1

9a7a6e06e345ccf7cc0f694045953592b5b37a8d
SHA256

a1a464aee64d0d790a0cc5b1d630d3d799e8448e40894755bccad2bdce08857f
SHA512

608c51e6de0b4d67138673dc3e97b981ca88d2c4ee0407aaffee85a37a1a425e4407f2ff8efa51a63d35d5523b0df3900b5cd18b6832e849fd71d5ad1d17fd61
SSDEEP

24576:NZzyGkuM/zkIbtwg9ifdhvcXJybTFXVjwCKgMdkDRuwZlgBmT:rWGkuuz16FhvRbTFXdkgFRuwKU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1a464aee64d0d790a0cc5b1d630d3d799e8448e40894755bccad2bdce08857f

Files

a1a464aee64d0d790a0cc5b1d630d3d799e8448e40894755bccad2bdce08857f
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 815KB - Virtual size: 826KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.wtq
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE