60546bb3323c2a87259b34fa61dfef8d28e915248983033a33146ff3a507948d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60546bb3323c2a87259b34fa61dfef8d28e915248983033a33146ff3a507948d
Size

2.2MB
MD5

529be1d60a4fe415e4d72a615afb6463
SHA1

0716bee2697b99006b0cd8d24231da9779d22c36
SHA256

60546bb3323c2a87259b34fa61dfef8d28e915248983033a33146ff3a507948d
SHA512

35fe6b0b17c254225b0e22b379174f4307f5550ddae77e6fcdb63c895187085637c8b869b4d8346496681293f81820695e8c071908da8de22bef00c6a9db4a96
SSDEEP

49152:aQabjV83/Y8SykOQ5KF/ZwgVHCpZvcCQtWPdlM3jIcsCf:aFV83/YbOQ4lVHCpVQWPdOIcx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60546bb3323c2a87259b34fa61dfef8d28e915248983033a33146ff3a507948d

Files

60546bb3323c2a87259b34fa61dfef8d28e915248983033a33146ff3a507948d
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Exports

Exports

Start

Sections

Size: 562KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dukplvee
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ewrnlrxt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE