a4ba06540c8c51f1deb1a3345d65549493a34f1051ab549979e3e6776d6ed876 | Triage

Sharing

General

Target

a4ba06540c8c51f1deb1a3345d65549493a34f1051ab549979e3e6776d6ed876
Size

2.3MB
MD5

3714556a25e819e904fe43cc85057fe9
SHA1

0550dce9eb497fc95a48a179d557e18cbe055e22
SHA256

a4ba06540c8c51f1deb1a3345d65549493a34f1051ab549979e3e6776d6ed876
SHA512

a315bc0c45b6c105e9985dd8d50a387e435fb60dcabcf9fb21f980ed8006cf1a18ef21c2e667955a9a41c0ad4c13bacde925c75ca273638b50d998b0a182a6dd
SSDEEP

49152:6kmKhyq24kI3qebVajb66A1W2Xu1sHZMA8ysus:6kmKEqlkAbkjb/nMuSH2A8ys

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4ba06540c8c51f1deb1a3345d65549493a34f1051ab549979e3e6776d6ed876

Files

a4ba06540c8c51f1deb1a3345d65549493a34f1051ab549979e3e6776d6ed876
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 685KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

csumesfv
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mnsatlhf
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE