a54d38a0f0ae395898d52f027bf1607dfb407c800c7937e9e2a4c0698d98308d | Triage

Sharing

General

Target

a54d38a0f0ae395898d52f027bf1607dfb407c800c7937e9e2a4c0698d98308d
Size

14KB
MD5

dc9cd893a5e97e20490124e6985caadb
SHA1

85f239c9678f2db71ebbbe81265235833414790f
SHA256

a54d38a0f0ae395898d52f027bf1607dfb407c800c7937e9e2a4c0698d98308d
SHA512

f093bec936555504e52ec38cc1e5325afc099ea5fcb3c4f1fce3f951f02e0b607f912a298fb446a7d75082cbe129e7cdb28385a21c1bf61022705f8f3fc098e4
SSDEEP

384:81vmyf5Wdy1qumnt22NiB4HXDE045HGcccc:Y3fwwmnt25CA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
a54d38a0f0ae395898d52f027bf1607dfb407c800c7937e9e2a4c0698d98308d

Files

a54d38a0f0ae395898d52f027bf1607dfb407c800c7937e9e2a4c0698d98308d
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ