47990b868f36f344a0f8bc210611103d2bacd4cb5e95a787381e9829fda23ec6 | Triage

Sharing

General

Target

47990b868f36f344a0f8bc210611103d2bacd4cb5e95a787381e9829fda23ec6
Size

5.6MB
MD5

12ea2388ee725602ab8719a96127f124
SHA1

32f675a796cf375053b4d4a4eb355be877d29199
SHA256

47990b868f36f344a0f8bc210611103d2bacd4cb5e95a787381e9829fda23ec6
SHA512

9fa2a47b7374dad5d67e06b22d904f303a9afa660f7fa7520025021329fb09d234b16aa55a9d899d9e92f4a37b927cea6724d53bc283cdfc13630b37e171de0d
SSDEEP

98304:YOoiC1KRCpNxx1a0Nu9bmha6E3NlJq/A+VOWkpiGhR7vE6Az3xI8ZI/J:YhiKgCpNxx1o9J6E3NrafOB5hJczPZIR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
47990b868f36f344a0f8bc210611103d2bacd4cb5e95a787381e9829fda23ec6

Files

47990b868f36f344a0f8bc210611103d2bacd4cb5e95a787381e9829fda23ec6
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 3.2MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wvnaekxq
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tdogvohb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE