abda0f63682eb13e5e52fe6529c20c42 | Triage

Sharing

General

Target

abda0f63682eb13e5e52fe6529c20c42
Size

313KB
MD5

abda0f63682eb13e5e52fe6529c20c42
SHA1

427957729a2159b70fb0aec0f48a5f5802d5f43e
SHA256

0b72eec5c1b8be0739ff780c1c88e04a0caf50c389ab05d2a44ac59627f601ee
SHA512

9435939ace6fde244eac7a4d64be1d61e47c7de37782bb0718ba8d493ab4daa337347ff0cd570f911a5b937cf0527ccd8ce2ca81cb6a64a73e8bbbe737e05492
SSDEEP

6144:iG5r2kUabe/SNOwn+KV624g7u63skmQX8rwvTSLR3ISJzNc71BdV8x:iur2TtBuUHVQssWF3ISJzm1BI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abda0f63682eb13e5e52fe6529c20c42

Files

abda0f63682eb13e5e52fe6529c20c42
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ