ef6bce63a99db46849f0ec13c8073a7e6e8df8c8b2e375d6f90c3d2ba129c2a2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ef6bce63a99db46849f0ec13c8073a7e6e8df8c8b2e375d6f90c3d2ba129c2a2
Size

69KB
MD5

44f9bdbe8b1f18316d364ee6fd883d0c
SHA1

5117482eefd962556d41e4ecb6bd033d2de3ce14
SHA256

ef6bce63a99db46849f0ec13c8073a7e6e8df8c8b2e375d6f90c3d2ba129c2a2
SHA512

c28c08384cbd5b1b206caee73525291e8e84c3dbd80a08e846666167d048b9d06509fcc1f9ca8bafc6a0173336727a1660089dc0de7fa0dff9fd09d4f236f84d
SSDEEP

1536:/4Cd+qitb0bt+FTCQ2w9EuTiHsdXzN6WeNy/KU6:/H4b0he9EuTz1zI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ef6bce63a99db46849f0ec13c8073a7e6e8df8c8b2e375d6f90c3d2ba129c2a2

Files

ef6bce63a99db46849f0ec13c8073a7e6e8df8c8b2e375d6f90c3d2ba129c2a2
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ