304c149e98b921ed033de25719854d6e6e49b7649a53ee7374da0af1beb0a9a9[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

304c149e98b921ed033de25719854d6e6e49b7649a53ee7374da0af1beb0a9a9.exe
Size

1.2MB
MD5

d2757b330d54c398df746d49ae2eb0e7
SHA1

c8d21566b8fbdb0ea2172fae3adc92797e9394b8
SHA256

304c149e98b921ed033de25719854d6e6e49b7649a53ee7374da0af1beb0a9a9
SHA512

8f6a81aad6745032fdbc0319b2c2ce5792258762e71d0dff01c506eb36065e61168cd752798d7452ef0ae3fbace4169eebb262efd4a4b898794ecf274783fb0f
SSDEEP

24576:PL0LBYZ8n7n4VoldSFldFzBUfW2lH5Aui7Ncj7F2KUbxv1SBq:ycW4yeFnpCzlH2Fej52FvJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
304c149e98b921ed033de25719854d6e6e49b7649a53ee7374da0af1beb0a9a9.exe

Files

304c149e98b921ed033de25719854d6e6e49b7649a53ee7374da0af1beb0a9a9.exe
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 28KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 186KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 948KB - Virtual size: 952KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE