251d2ac2190f300f5654dbd064d24fe7db8d2e55ff10704a16b27d6b7f52acb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

251d2ac2190f300f5654dbd064d24fe7db8d2e55ff10704a16b27d6b7f52acb4
Size

2.3MB
MD5

af7a3f578b4de0b65fa06b69365faeff
SHA1

9bd7e72984d3d607817678bd749b84605dafe976
SHA256

251d2ac2190f300f5654dbd064d24fe7db8d2e55ff10704a16b27d6b7f52acb4
SHA512

ac53b29a47a48041c43056bdd0b750a4c5d08c07a80d731b6cdc766e2b984618b0259a25807e50570f78402ac5228a385b2dc5aae0bb6216881e30ffda2e441c
SSDEEP

49152:ckmKhyq24kI3qebVag1bcOgKi7cCRzwU+rVksaB0:ckmKEqlkAbkg2ki7TR8lI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
251d2ac2190f300f5654dbd064d24fe7db8d2e55ff10704a16b27d6b7f52acb4

Files

251d2ac2190f300f5654dbd064d24fe7db8d2e55ff10704a16b27d6b7f52acb4
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 685KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ptgrqcoa
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vfzuhpbw
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE