d87421e31d92269371aead8cb5117ea4188f66c4490811ecf26f83e39009300f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d87421e31d92269371aead8cb5117ea4188f66c4490811ecf26f83e39009300f
Size

2.9MB
MD5

e25f4482ef29a439cc6ed5eb985ea3a1
SHA1

377bde2832507c748222fc38bc2c12ad231134ef
SHA256

d87421e31d92269371aead8cb5117ea4188f66c4490811ecf26f83e39009300f
SHA512

e314b1503c686edc21f9f89bd51a3d0d9d7625d158670b728b18d77cf1e96e720f4b7426933e55ce4a2871d7a8fc034a1c76828132e53565b14b6a496bc7489d
SSDEEP

49152:TtsjVyr8CUTbvBjIVJs0Tg6ZU9g/tH2xFjRiuM3Wt:yJycos0Tg6AgV2LjRiF3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d87421e31d92269371aead8cb5117ea4188f66c4490811ecf26f83e39009300f

Files

d87421e31d92269371aead8cb5117ea4188f66c4490811ecf26f83e39009300f
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

Start

Sections

Size: 574KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tetywbfw
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rsqkndpr
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE