4e4d92909fabb1e16e981c5becf495f4ae48d493dce8762dd084c7347ed90b8a

General

Target

4e4d92909fabb1e16e981c5becf495f4ae48d493dce8762dd084c7347ed90b8a
Size

840KB
MD5

e6483332ca934f7d0324fcbbe5693328
SHA1

442acf80f683056331861f39186bf90cb3bf3c27
SHA256

4e4d92909fabb1e16e981c5becf495f4ae48d493dce8762dd084c7347ed90b8a
SHA512

9c802f8c8e74301854f2cacb3d71ddb9a0e4a616c64ca5aa597f1aa87487a699018cdb0e7bafaea08a50b02eeb2c80715c243865f8f612808f221aa6eeb63917
SSDEEP

24576:SRTCU1K+ymCvL6oCDgrMgznjnJabRrxP/yg:SRTCT+GuEggznjk1Ug

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/67f998459a1afe82a98a482dd5c84bb6c186b72303a3af9be0f6618a3e552d65.exe

4e4d92909fabb1e16e981c5becf495f4ae48d493dce8762dd084c7347ed90b8a
.zip

Password: infected
67f998459a1afe82a98a482dd5c84bb6c186b72303a3af9be0f6618a3e552d65.exe
.exe windows:6 windows x86 arch:x86

2388fee6ad8ce4f4a35dbaf64e2da01a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA

user32

EnumDisplayDevicesA

advapi32

CredEnumerateA

comctl32

PropertySheet

Sections

Size: - Virtual size: 1.3MB

IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 94KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE