ad5be8a43014f015659ff057355b7904 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad5be8a43014f015659ff057355b7904
Size

1.7MB
MD5

ad5be8a43014f015659ff057355b7904
SHA1

daf26209b733e5ba9b92b1c9eaa3756a5a4b561f
SHA256

1f957c9e44aebeb202a9d50aaac726effc13250b4632305836d0ece14eb25f43
SHA512

899f2ccad0a57ca653240ef28b2871a6f8a4ea7e508a763a1a7686b093c9cb96df02687cd782cc543ae14cb77cc87333ac94fe2255f3f7a833489a8e9720621b
SSDEEP

24576:S0nx/B5ewYsKUnNzO0LdXewKNnpKxI7Hh9ZBXfESz:SABQCKMN7pXRKNnpKO7HhpZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad5be8a43014f015659ff057355b7904

Files

ad5be8a43014f015659ff057355b7904
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

bckgzm.pdb

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ