19a043e5268b1c33c65687a96b34af05f230207881ca1b0ae71fe079d9f41778[.]exe | Triage

Sharing

General

Target

19a043e5268b1c33c65687a96b34af05f230207881ca1b0ae71fe079d9f41778.exe
Size

4.0MB
MD5

94e69e71294dc6e1d21ff0fd7b69087f
SHA1

2dadc5403c16208f08506e1c94b48d38815f36c9
SHA256

19a043e5268b1c33c65687a96b34af05f230207881ca1b0ae71fe079d9f41778
SHA512

c2bae7bf558b57e96cb44d322a8166f96f43ee61d9bfe7e7744741673bc8e95f35ae19834c16a94114aabbdac708df38f7d43adecd865d5376371c558051bd5b
SSDEEP

6144:Fj/7Qsrm8pU99tkS1eTbqrerojvFPGmQIJ+oOY:FvLPw9tZU+LFP5QrY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
19a043e5268b1c33c65687a96b34af05f230207881ca1b0ae71fe079d9f41778.exe

Files

19a043e5268b1c33c65687a96b34af05f230207881ca1b0ae71fe079d9f41778.exe
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ