054bb634f52b6bc84b668df19617bb75a01b1398fdf8a6dbe03d0da102fcacc4 | Triage

Sharing

General

Target

054bb634f52b6bc84b668df19617bb75a01b1398fdf8a6dbe03d0da102fcacc4
Size

20KB
MD5

2748e94bc534ce150f01fb1240a48dca
SHA1

cf8ff33827beda89bfc44f238f96f334289c5892
SHA256

054bb634f52b6bc84b668df19617bb75a01b1398fdf8a6dbe03d0da102fcacc4
SHA512

240c480224a900920277b44fd89fcf52d8defe6da52491bfc7be3283b456e1bd793519cb89f841e633427d1458a8bdc7364e04f6657217c658e4f07e989aa29b
SSDEEP

384:N5R0jweN41jEnwLkcrp6Rq9wPLcFHYKf7TCYJyJRn79HHND:N8mNX/rpn9woHjutJRnBnND

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
054bb634f52b6bc84b668df19617bb75a01b1398fdf8a6dbe03d0da102fcacc4

Files

054bb634f52b6bc84b668df19617bb75a01b1398fdf8a6dbe03d0da102fcacc4
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE