b0749cc26d2e4f601237825235fb748f1dbf6433ec33f7461da18fc1910781e6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0749cc26d2e4f601237825235fb748f1dbf6433ec33f7461da18fc1910781e6
Size

2.3MB
MD5

c825cb245ce313ffa9e8771a2ba05661
SHA1

bd18213f6800807a94a77f2471e1a7aa20c76362
SHA256

b0749cc26d2e4f601237825235fb748f1dbf6433ec33f7461da18fc1910781e6
SHA512

51bf0aafc1a17a1dd495dec8c3e05e9a12cc99719eae7f884ce24b1bca93721bc1f12aab6c53382b1baef4bb984e0b54738f4a2e3e140dd314f794bd81eccf33
SSDEEP

49152:ofNYyhPNfMGphcnhnb1Lz5x5DY9CM+JPZgL111c7BezttyYAj:2XWv5x5EQJ0111c7ut

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0749cc26d2e4f601237825235fb748f1dbf6433ec33f7461da18fc1910781e6

Files

b0749cc26d2e4f601237825235fb748f1dbf6433ec33f7461da18fc1910781e6
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 685KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cyhmjqyo
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

egidmmwv
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE