ac121feb46254261308cd381a6ceb125 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac121feb46254261308cd381a6ceb125
Size

403KB
MD5

ac121feb46254261308cd381a6ceb125
SHA1

8a68e6703b019c2481bf1103fcead0819aecb5b0
SHA256

a27c14f4956a58c80dc0915f46f1dab9ba9c5527fdcb15a7a34497f1deb4e3ff
SHA512

9ae4cc86d5dc620ed3f0bdd66f0cf462a33edfb7bad646f4f9b806a1fa0c4327652d24cc235adf6d03e34fa531ef017848de3eeb684fdce5e1090bc492155446
SSDEEP

12288:o86ec7f3uH6Q9+R/syoxGxfdM3Qxy3yR8/Zo9l:o86eK/uarsyoIxFM/n/W9l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TT COPY.exe

Files

ac121feb46254261308cd381a6ceb125
.rar
TT COPY.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 448KB - Virtual size: 447KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ