ab23aefb33e20637a102fe8b9675339e5c476f17b4bd455e49bc66ae4a488854 | Triage

Sharing

General

Target

ab23aefb33e20637a102fe8b9675339e5c476f17b4bd455e49bc66ae4a488854
Size

3.5MB
MD5

a09633855e6d61609859c68300c7983e
SHA1

b1cf3cc87904f0a4de29efb73814906f4e1d01ab
SHA256

ab23aefb33e20637a102fe8b9675339e5c476f17b4bd455e49bc66ae4a488854
SHA512

0fb083096f88e4cc4c49c72780ffec6dc0a65e1fedc3d2c1934fe445a1bdbe7316516dd98409749114d3b1abe4db11664fd864e2f3bbadce0a1f2a3046f3c8c3
SSDEEP

49152:5lu0Wz/c2rHhmuYGS3ZV3glhx6ISdfmNWzomhZ+q9N95Y9DfhVDylzFYmHirQ:5W0Yh9Yx3gl5mhZ++95QJhylpYm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab23aefb33e20637a102fe8b9675339e5c476f17b4bd455e49bc66ae4a488854

Files

ab23aefb33e20637a102fe8b9675339e5c476f17b4bd455e49bc66ae4a488854
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 2KB - Virtual size: 2.8MB

IMAGE_SCN_MEM_READ

VProtect
Size: 546KB - Virtual size: 548KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VProtect
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

VProtect
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_MEM_READ

VProtect
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE