67c470e18c423d3bc4af934c719a462bd30e5d30f98ff8dd4526e3b9a8f605e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67c470e18c423d3bc4af934c719a462bd30e5d30f98ff8dd4526e3b9a8f605e8
Size

2.8MB
MD5

394d436e51728afe51f03e8469f9d9a1
SHA1

eaf9fbddf357bdcf9a5c7f4ad2b9e5f81f96b6a1
SHA256

67c470e18c423d3bc4af934c719a462bd30e5d30f98ff8dd4526e3b9a8f605e8
SHA512

fa006f8eb9ab013e745b540c1a67dc2af5ebb58936039b6a7b1f0e43175c22ca628665b2a23099ecb2e802244825b8042b6cd0b1c4280b5ec5993d457c1bd004
SSDEEP

49152:kD6kLYO5Itbf/DOUzrHWCzVmIp14dvGFp2rzLHokuFt7YBWoZiP+4MXf8t8k+:kufO5ItT6UtVP14DrzLNuFt7YdgA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67c470e18c423d3bc4af934c719a462bd30e5d30f98ff8dd4526e3b9a8f605e8

Files

67c470e18c423d3bc4af934c719a462bd30e5d30f98ff8dd4526e3b9a8f605e8
.exe windows:5 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 32KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xohwmkuj
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lmozmgyh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE