dd6cd522f075f67ac72d18d33a7d5663 | Triage

Sharing

General

Target

dd6cd522f075f67ac72d18d33a7d5663
Size

148KB
MD5

dd6cd522f075f67ac72d18d33a7d5663
SHA1

d1bc200febce3017f42e073d5db5ad06bd23a465
SHA256

40ab9e1552bb4ead90ea67c8b7df430a4799bb3b3dcba5ac57e6e4f83044e6f5
SHA512

ecd869a009f49750349ef03bee0542d156c5534537068a7010dc3a667e05ef01723e3ee6af0572e63832e568d58310dc94ba61d275422db08df24852da8ddcaf
SSDEEP

3072:WkBfAvO+3DVA1GUc0uYD5+HE3N/Y4qN3shlihJ2hFnryY6:Wb5AIJEdwT38ihWX6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

dd6cd522f075f67ac72d18d33a7d5663

Files

dd6cd522f075f67ac72d18d33a7d5663
.exe windows:8 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 544B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tdvxls
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE