812d97565d7a929cc7ec239fb8296fa9fea67caa68cda8d9b823a569050c0584 | Triage

Sharing

General

Target

812d97565d7a929cc7ec239fb8296fa9fea67caa68cda8d9b823a569050c0584
Size

2.9MB
MD5

dd1d1a22b58d85eeb468803241e11438
SHA1

58fdb9cb95665956efd13882800c9d72786696f5
SHA256

812d97565d7a929cc7ec239fb8296fa9fea67caa68cda8d9b823a569050c0584
SHA512

28b7461b1d1d87bf67c09d58dfebc34eefa69c64fe7d3aa006a8f9f945f2e0530b547539fbfe440c078bbffabc89d4520eabfc1c2ff3fedde6fa8295d384a942
SSDEEP

49152:zC2KdJSG128UOOdkj8cGrtfFCo2tuepOpzw8nsU2/:FSJSG128U5kj8caJFCFtGtw8sj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
812d97565d7a929cc7ec239fb8296fa9fea67caa68cda8d9b823a569050c0584

Files

812d97565d7a929cc7ec239fb8296fa9fea67caa68cda8d9b823a569050c0584
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

Start

Sections

Size: 562KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

munkzeix
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bmdorien
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE