16b08173109d3efc62f5169b656b33ed | Triage

Sharing

General

Target

16b08173109d3efc62f5169b656b33ed
Size

126KB
MD5

16b08173109d3efc62f5169b656b33ed
SHA1

9e46dc42dec68bb03cd5885923db111d9e471ff4
SHA256

a05fac47c34f48fbfa1d15c46547602b193c7db8de3d9a98d305d48f7c5415df
SHA512

3b42305cf7d4a15b5c5fdcc5b8de751dc599d0724aaaecb0554e20bb842c58fe0047cbc9a3ebf2b36d68c18807bb096027e034d1097391eb36980fb73541285b
SSDEEP

1536:IE3qz4ayX9ioT5Xl8lQWj1vTo5G6kvBzodfjZt4ZDp/nrHrA:179l86WqGzIfjZtSDp/nrHrA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16b08173109d3efc62f5169b656b33ed

Files

16b08173109d3efc62f5169b656b33ed
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.MPRESS1
Size: 97KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imports
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE