b49a7864b8929217d677dd6b4bec7607 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b49a7864b8929217d677dd6b4bec7607
Size

214KB
MD5

b49a7864b8929217d677dd6b4bec7607
SHA1

c0d3071c1c3ee33f4df5b76f31b94ec2075b0de8
SHA256

dce1e5f39a6bd9e24468926d17574948d316f08f3ac6e854ba09c86f10e45195
SHA512

fe3796196ed71632615c00faf12506089096181a00d89821617f008819d0900c9aa4292354ecec89d8b9c9d4ee7c1739b55a1b26f6b8b84f7f7c9b96036d5dd1
SSDEEP

6144:JCZaZr1Vjiz3i3+VA2cT4qmrRNHcvZuMeoJd:JC2vji/VA2o41cvZHzJd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b49a7864b8929217d677dd6b4bec7607

Files

b49a7864b8929217d677dd6b4bec7607
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 97KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE