3c26086d42e1cfb9a4cdcf340f37d1c18952e2b264e6f374858b642117fa26f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3c26086d42e1cfb9a4cdcf340f37d1c18952e2b264e6f374858b642117fa26f2
Size

1.9MB
MD5

422249b6cef71ba1bba72bba7bd637fe
SHA1

eada6ba17f61554e746911e0c3922bd42f0e9193
SHA256

3c26086d42e1cfb9a4cdcf340f37d1c18952e2b264e6f374858b642117fa26f2
SHA512

f1d861efeb440a46554b65f97dcdc9ac70ff348df6932f3ace3d2ed95b6ae4bb53c8611f5fc998f97a6af98d3053d2ad9e149487eab4f8b84f40b79033ab8bb9
SSDEEP

49152:Ain54BtWj5q5vvPnINUALIZg6syFWVNtrIPqUb6:X5HmXnYL4g67FWVEPnb6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c26086d42e1cfb9a4cdcf340f37d1c18952e2b264e6f374858b642117fa26f2

Files

3c26086d42e1cfb9a4cdcf340f37d1c18952e2b264e6f374858b642117fa26f2
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 181KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

njcfyxri
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wgaqfbsn
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE