712d4b67c95d0ff5cf2b254053cce9fca15accefc87eb7621df01ee0ffc3e97e | Triage

Sharing

General

Target

712d4b67c95d0ff5cf2b254053cce9fca15accefc87eb7621df01ee0ffc3e97e
Size

821KB
MD5

e25d473303b7d0fbd8864117023e34c8
SHA1

91ecd75187243f4a27bc526e118e6942733b4d6a
SHA256

712d4b67c95d0ff5cf2b254053cce9fca15accefc87eb7621df01ee0ffc3e97e
SHA512

9db4a3a5d3faa8fb3abf4d920dd57b0f2055c1c540d78504ea46a28c59cc415dc7efce71dbcedf992852a43f05e8228cbcce08bac4ff9054d06ea000fe3bb41e
SSDEEP

24576:KRH80G1OVRCrwJBKTaInZ3NueJdkeshvm9bdBD2e:KaCVR9SaIu0d0hibdBD2e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/kcHayiwhi.exe

Files

712d4b67c95d0ff5cf2b254053cce9fca15accefc87eb7621df01ee0ffc3e97e
.zip
kcHayiwhi.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 945KB - Virtual size: 945KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ