af660bf342abfe7d213baf6d3ef402cfed7f0997d750b08e0376cb8eb62d4e03 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af660bf342abfe7d213baf6d3ef402cfed7f0997d750b08e0376cb8eb62d4e03
Size

2.3MB
MD5

f738dd49bf5cb605b14da04f794bbf16
SHA1

c752f35856756a69cb6641fe33c54c498c51cd21
SHA256

af660bf342abfe7d213baf6d3ef402cfed7f0997d750b08e0376cb8eb62d4e03
SHA512

5fb79e642cd9324be890542ad9c965402b21a3047ec21db9ecf850dbda88e221b2c462a780f2f1ed21ef763150a6c72b1c45c9695a337b21f34ebabe2144727a
SSDEEP

49152:Ig69SebPPiKgYyBlPk9XsFFzSSp4CEsCKscOQ25KBPoBysf9Sw:Ig69Sebi1kNsFFzSSKWC4QA+9S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af660bf342abfe7d213baf6d3ef402cfed7f0997d750b08e0376cb8eb62d4e03

Files

af660bf342abfe7d213baf6d3ef402cfed7f0997d750b08e0376cb8eb62d4e03
.exe windows:6 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 680KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kwyxrjre
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

alwcqowl
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE