28d12b148f6586287fb80ee991c3b4055ed81901aeb994408d75b7b16cc40e47 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28d12b148f6586287fb80ee991c3b4055ed81901aeb994408d75b7b16cc40e47
Size

3.5MB
MD5

f43f18fe9dcd8692e7ebff6de92c5670
SHA1

28a19ee0cabab10e8fddd03be5eba297c7a2108d
SHA256

28d12b148f6586287fb80ee991c3b4055ed81901aeb994408d75b7b16cc40e47
SHA512

f2433940805344804bb94c9f01963fc0ae5cf7ab4d10059c397204f588e8b3660ad5209cb7c1536b61d6361c9686ea55b62c2e774279b82c6fe36916bd94dcc7
SSDEEP

49152:bEnVPihmPcFtMvHf4QuEkn2U8eoZeLtHSuUcuH503HEedqlXuexeAOVt7bfDIlW5:N/FtAfoEknN8eOcuyXe3OVtnrD8CrBV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28d12b148f6586287fb80ee991c3b4055ed81901aeb994408d75b7b16cc40e47

Files

28d12b148f6586287fb80ee991c3b4055ed81901aeb994408d75b7b16cc40e47
.exe windows:4 windows x86 arch:x86

8b1b6015e405f67d65a5fd3a26890614

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

msvbvm60

ord587

Sections

.AKS1
Size: 223KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AKS2
Size: 3.3MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AKS3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE