ee3dc8f2c5156fe52bc6bf225d1d7a9ecc3612a0db90156799fa04dffefd6913

Sharing

Copy URL

Twitter E-mail

General

Target

ee3dc8f2c5156fe52bc6bf225d1d7a9ecc3612a0db90156799fa04dffefd6913
Size

3.7MB
MD5

75392e586d7f93d3759e627adb331165
SHA1

0b91995221529b08b9b2f88770ffb6baf74bdb2b
SHA256

ee3dc8f2c5156fe52bc6bf225d1d7a9ecc3612a0db90156799fa04dffefd6913
SHA512

997ac3bc3c8ab74ac377e01072fb6d07e3b318925cdc150918ad5c574caa7cca9f84f6d688be24ca3e60fb929e9e2953b24db156a4fe00d5400d76cdeddd68d9
SSDEEP

98304:q2iFKQK1tdpSV/KQyCPSU3vfFVWYI0i17:q2i0sV/K1CK+3F40ix

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
ee3dc8f2c5156fe52bc6bf225d1d7a9ecc3612a0db90156799fa04dffefd6913

Files

ee3dc8f2c5156fe52bc6bf225d1d7a9ecc3612a0db90156799fa04dffefd6913
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

AmdPowerXpressRequestHighPerformance
NvOptimusEnablement

Sections

Size: 29KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 14KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 552KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 272KB - Virtual size: 11.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 29KB - Virtual size: 52KB

Size: 14KB - Virtual size: 40KB

Size: 512B - Virtual size: 8KB

Size: - Virtual size: 4KB

Size: 512B - Virtual size: 4KB

Size: - Virtual size: 556KB

Size: 1KB - Virtual size: 4KB

.rsrc Size: 552KB - Virtual size: 556KB

Size: 272KB - Virtual size: 11.5MB

Size: 2.8MB - Virtual size: 2.8MB

.rsrc
Size: 552KB - Virtual size: 556KB