3e3da9b98281ce663e3e9d3e596e613c24d7cd5deb0848412b0689970072300d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e3da9b98281ce663e3e9d3e596e613c24d7cd5deb0848412b0689970072300d
Size

1.8MB
MD5

a11dd61f51c6328a60e0f21ccd6c02f8
SHA1

b2e63cd4db6cfe6f9c59c6f45c5139cfe6645fff
SHA256

3e3da9b98281ce663e3e9d3e596e613c24d7cd5deb0848412b0689970072300d
SHA512

4ac8907d727d7874639eb7bb34f67fb066020d688ea2b66a125ff2f40f5442913edbc86ccb4d2b56656ce7137758ed9f2af894173b3d8a36a9f1d2fa127f1e15
SSDEEP

49152:n/4y8GYwj9NKSFU625i9BDrH9WNENU0bpsje:n/4y8G/KSx25i9ZrdUE609sj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e3da9b98281ce663e3e9d3e596e613c24d7cd5deb0848412b0689970072300d

Files

3e3da9b98281ce663e3e9d3e596e613c24d7cd5deb0848412b0689970072300d
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 182KB - Virtual size: 408KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sczlippc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zgtlyztp
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE