0b49da8fd8ef12f9537578d50a44628e82589d11ea312cadf0c4e9c5f3417004 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b49da8fd8ef12f9537578d50a44628e82589d11ea312cadf0c4e9c5f3417004
Size

2.8MB
MD5

4b027af59cab54ac94bbe8adeee4b554
SHA1

c3fa0cde034db13ca491332c47335e3aef044e19
SHA256

0b49da8fd8ef12f9537578d50a44628e82589d11ea312cadf0c4e9c5f3417004
SHA512

6a8efbd8f4b9e5df06f99c1cb89334ef72594dd59ac94eba172614abb28c139884dbec98dfe120e968026e1b8963675d8efcc35f8dcab5d39a598cc53398bff9
SSDEEP

49152:j7z6gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:2d1XdhBiiMa7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b49da8fd8ef12f9537578d50a44628e82589d11ea312cadf0c4e9c5f3417004

Files

0b49da8fd8ef12f9537578d50a44628e82589d11ea312cadf0c4e9c5f3417004
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.Upack
Size: - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE