60d884707ebca66b1e9b7e179009a782a63965b596415ab38c6e06bdf4bae2e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60d884707ebca66b1e9b7e179009a782a63965b596415ab38c6e06bdf4bae2e3
Size

2.3MB
MD5

42d38e85a00fcf95ed17c8ca5b9d7b29
SHA1

4d4fe0d74377d4a55f782ce63ad87582dbf1ba26
SHA256

60d884707ebca66b1e9b7e179009a782a63965b596415ab38c6e06bdf4bae2e3
SHA512

cf9c4ee271c52e3fb60019ca2d2a600019f964e274f1cff19ca143789374261daed4fe795faf3ba3dc561ff3a66204e19db73d375d47764f75bf438861cc0599
SSDEEP

49152:J7YXhxyOuk0rezU4N9dQnzEMRO6Nsnv7w6yezZr42r/xAQWIu1N:J7YRD/0rEMCw6yezG2mpxN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
60d884707ebca66b1e9b7e179009a782a63965b596415ab38c6e06bdf4bae2e3

Files

60d884707ebca66b1e9b7e179009a782a63965b596415ab38c6e06bdf4bae2e3
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 1.5MB - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 968KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ouslbspo
Size: 804KB - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bnsjexkx
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE