58dd3873a53761116706b3ce1cfd17f725d06a162ea49c8e2b631bd808325b3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

58dd3873a53761116706b3ce1cfd17f725d06a162ea49c8e2b631bd808325b3b
Size

3.0MB
MD5

c5169b24f339cfc1a74deb9608c14810
SHA1

7e6a6c904bdb51ac189314925ffc0fa70cde1019
SHA256

58dd3873a53761116706b3ce1cfd17f725d06a162ea49c8e2b631bd808325b3b
SHA512

a6a8000f4699440abd90d533e922aa6a5c1735dd23f98807da40bd5e0bc9b2e09f7294bca4645f75ceaf1348574d3d9efbbe89f6ad4caebec783b659818f678b
SSDEEP

49152:3GSNSW7t5LY9eCcDwx7Jixoxk3opRFh6+KM0SAnMsopTsHzTgdE:3Gsj3LsOwx7JixoxC8FMJgsopAPiE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
58dd3873a53761116706b3ce1cfd17f725d06a162ea49c8e2b631bd808325b3b

Files

58dd3873a53761116706b3ce1cfd17f725d06a162ea49c8e2b631bd808325b3b
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

Start

Sections

Size: 562KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

oujgcaaz
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mwptutno
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE