15e40555a5c27f10b7d2889d33c3c7f7ab541b78c3d546a1642e121aa9d45561 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15e40555a5c27f10b7d2889d33c3c7f7ab541b78c3d546a1642e121aa9d45561
Size

2.3MB
MD5

cccd58c41cc6ba59f4cfa3ea273f40ab
SHA1

762a6d5a3e27ef3c325405b465e16d0bca5ff018
SHA256

15e40555a5c27f10b7d2889d33c3c7f7ab541b78c3d546a1642e121aa9d45561
SHA512

085580ba041381ee0519a8284c6910af5d519ad31f628e2faf8eb74001d99b9056eff90497d53af2edd8c98d5c705e47f63a84cafe4dc531a9e4ba0a38974176
SSDEEP

49152:vgpmalMmi4Jom/+AkbARb2rACtrCilFNqKrWIZEd5Atu9sE/M:vGZ/i4JoO+9bAAfCur73Ed5m2sE/M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15e40555a5c27f10b7d2889d33c3c7f7ab541b78c3d546a1642e121aa9d45561

Files

15e40555a5c27f10b7d2889d33c3c7f7ab541b78c3d546a1642e121aa9d45561
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 685KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ythlvhnq
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lgojttmt
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE