882acc46394b161265d30b4af5ab0b43238438a6b87eb1e64a594e57099cafa1 | Triage

Sharing

General

Target

882acc46394b161265d30b4af5ab0b43238438a6b87eb1e64a594e57099cafa1
Size

14KB
MD5

9a88568ce3315a652bd583cd9495fac4
SHA1

c5f058628658bdc154b2521e64a85fe383d8f26e
SHA256

882acc46394b161265d30b4af5ab0b43238438a6b87eb1e64a594e57099cafa1
SHA512

eeda8c279c0aa669861401cbb8368aadf947bf6df2934f9f3db064a755828c5c190a5d2e5e54f9bf5b8e238bc01d71b9405f302f807ba80f2a598a5f61f7c25c
SSDEEP

96:LqUW8goEzzB5mBreaYRBYlTtsYs7JX8tHYOCjlg:WUW8glzY/YzotLs7JX8t4OUe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
882acc46394b161265d30b4af5ab0b43238438a6b87eb1e64a594e57099cafa1

Files

882acc46394b161265d30b4af5ab0b43238438a6b87eb1e64a594e57099cafa1
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata6
Size: 1024B - Virtual size: 814B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata4
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata2
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ