ac5b58e0012a4fcba16060ef69663cb1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac5b58e0012a4fcba16060ef69663cb1
Size

114KB
MD5

ac5b58e0012a4fcba16060ef69663cb1
SHA1

2b72b009147ef9d64caa79d493b6e7ef1fcb8067
SHA256

20251873e99b66fca6e9c68bf02720e230e554d3563e1422e61128f368170397
SHA512

f1392d61e18f29beb04af9167b450da74a2cad74080c32dd0160bd606b9615fc2626b618b62e484bc492c1e4b9769fb5d32b968723051012f2dee603cb71323c
SSDEEP

3072:cfYMl5h9rBup9MVn/eyFhdt6kOduIieAC:2Y+hwMVGyHd65r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac5b58e0012a4fcba16060ef69663cb1

Files

ac5b58e0012a4fcba16060ef69663cb1
.exe windows:1 windows x86 arch:x86

2f3c5da38e687ed8e68cd2b55dbd54f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA

Sections

CODE
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Np
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE