49d12af6c9df780c5a98b5bce291068eb38e7cfb99aa4c5aaaa6a7f7144685c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49d12af6c9df780c5a98b5bce291068eb38e7cfb99aa4c5aaaa6a7f7144685c0
Size

81KB
MD5

44a5f1794bfca65795a4ca91dd1aed75
SHA1

45ad024ff3ef7c94f598387d24394882a5696708
SHA256

49d12af6c9df780c5a98b5bce291068eb38e7cfb99aa4c5aaaa6a7f7144685c0
SHA512

d81c215bceaf78d65a52cb890563d8cfe4611a149cd9011723c0c4cc9077a5a3ec1060b6970dc30ae88f6e45fce2aa9a77f86b8322c3e5a8bf44f0a374cd8c17
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOpXGw:GhfxHNIreQm+HiUXGw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49d12af6c9df780c5a98b5bce291068eb38e7cfb99aa4c5aaaa6a7f7144685c0

Files

49d12af6c9df780c5a98b5bce291068eb38e7cfb99aa4c5aaaa6a7f7144685c0
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PEC
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE