5e961b53eedc78922227dcafe83fed8a7b0dab310c28a3f672a09b1fd8a7c1ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e961b53eedc78922227dcafe83fed8a7b0dab310c28a3f672a09b1fd8a7c1ef
Size

2.3MB
MD5

7e544d435d6be5ffc1449139d762f9d2
SHA1

78e2e991f68dbbef79493cbda7fe72e63a3449d9
SHA256

5e961b53eedc78922227dcafe83fed8a7b0dab310c28a3f672a09b1fd8a7c1ef
SHA512

3d5a60ca6a072b72263d49fef3e8726d795cfe1fd1cde280e19f38876e602bd470b33f0cf72ad358e682c18051e059ad2095d3e8e0a3aab94f52e50f804737df
SSDEEP

49152:cg69SebPPiKgYycPgB9LsNdI0cNjvFFElOZBf2Vfr3V:cg69SebiiPgDddieGr3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e961b53eedc78922227dcafe83fed8a7b0dab310c28a3f672a09b1fd8a7c1ef

Files

5e961b53eedc78922227dcafe83fed8a7b0dab310c28a3f672a09b1fd8a7c1ef
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 680KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vyorwbli
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ujqclipb
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE