f4537330551d97f31b0e6383dfe8e8deaec6064624cd0f2b29db8ecf7f82e80e | Triage

Sharing

General

Target

f4537330551d97f31b0e6383dfe8e8deaec6064624cd0f2b29db8ecf7f82e80e
Size

11.0MB
MD5

100431f1d22ae60cf1e32cca0e1eedcd
SHA1

327fa25ebba10893bc8573252d03aed2c35bd398
SHA256

f4537330551d97f31b0e6383dfe8e8deaec6064624cd0f2b29db8ecf7f82e80e
SHA512

4eb1ecea4bb5ed3b020059d7fa8d73784081f407448068eb6c840401e290338ba8125c000ee729264acb1d6a96be9473d0d6ae353ea8f40ea46b4776ce5f3907
SSDEEP

196608:VtlDvKi8BefgjPnmByd5lSPIUCqFtXfS4JXHN2T0E4+KQqsEzVa86:VLXfgjPmBydP4oQfSaH4AEXK9EN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4537330551d97f31b0e6383dfe8e8deaec6064624cd0f2b29db8ecf7f82e80e

Files

f4537330551d97f31b0e6383dfe8e8deaec6064624cd0f2b29db8ecf7f82e80e
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

?Dll_GetLogFileName@@YAHPAGH@Z
?Dll_GetLogLevel@@YAKXZ
?Dll_GetLogTos@@YAKXZ
?Dll_SetLogOutput@@YAXKKPBG@Z

Sections

Size: 152KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9.5MB - Virtual size: 9.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lzvqbeab
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

skwsohxq
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE