12b07fe74110ebf9b5547f87732613d5f9f5d5dd6a8cc62bd014e26e92e913c5[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12b07fe74110ebf9b5547f87732613d5f9f5d5dd6a8cc62bd014e26e92e913c5.exe
Size

2.2MB
MD5

7edfdd203039c266f03719215a72bf06
SHA1

594e29795fcd3177726faed2f0f2c9d566aba71f
SHA256

12b07fe74110ebf9b5547f87732613d5f9f5d5dd6a8cc62bd014e26e92e913c5
SHA512

7f1a8508ddc89391186a1e2f292193a9a70de984a4297ec1f1588ec9d1507bc40e3ddecc2097c202fdfbf356660daa2746c95862f135d6fd8e4ab5d219a6c616
SSDEEP

49152:MLiPHGV8PyJGYlCx6Qo58jFOHSbtmtzrhpkugNgqKWJ5o+X:pFsxls638jFOHSporXm2qjdX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12b07fe74110ebf9b5547f87732613d5f9f5d5dd6a8cc62bd014e26e92e913c5.exe

Files

12b07fe74110ebf9b5547f87732613d5f9f5d5dd6a8cc62bd014e26e92e913c5.exe
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 572KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xajodspp
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ngylwvdf
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE