5d2799adbdc14d7474683c7b9d0b7606453fd81505f8f0e25b6e3d32a6e38794

Sharing

Copy URL Twitter E-mail

General

Target

5d2799adbdc14d7474683c7b9d0b7606453fd81505f8f0e25b6e3d32a6e38794
Size

3.6MB
MD5

324651e3127fa807babcaeb4d1164491
SHA1

3f773601615aaae75b83c01e139eb1eeef452be4
SHA256

5d2799adbdc14d7474683c7b9d0b7606453fd81505f8f0e25b6e3d32a6e38794
SHA512

62031c4ae2632d1f0ae24dd9a455bf7fdd735b8fd6268d23437ea3556814227d2a797c7b519f563f4f1aa904130c215c8ce425bc16a59b14977295f44c144a3f
SSDEEP

49152:8PmI9od5C33taA0wSVZ0D8olFd1+EN+zGXpmQ0yM35su+dzilarc9/+19Y6QfLnr:8H3bHD3+EkaXdzIgELfIMhRD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d2799adbdc14d7474683c7b9d0b7606453fd81505f8f0e25b6e3d32a6e38794

Files

5d2799adbdc14d7474683c7b9d0b7606453fd81505f8f0e25b6e3d32a6e38794
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

AmdPowerXpressRequestHighPerformance
NvOptimusEnablement

Sections

Size: 23KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 14KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 552KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 272KB - Virtual size: 11.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 23KB - Virtual size: 44KB

Size: 14KB - Virtual size: 36KB

Size: 512B - Virtual size: 8KB

Size: - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: - Virtual size: 556KB

Size: 1KB - Virtual size: 4KB

.rsrc Size: 552KB - Virtual size: 556KB

Size: 272KB - Virtual size: 11.5MB

Size: 2.7MB - Virtual size: 2.7MB

.rsrc
Size: 552KB - Virtual size: 556KB