c057e342736e4cbea5d5c9d6463af60e2cee2eb8829f5c7df1c86cc502b25d91 | Triage

Resubmissions

10-06-2024 20:26

240610-y7ywxayfpd 10

Sharing

General

Target

c057e342736e4cbea5d5c9d6463af60e2cee2eb8829f5c7df1c86cc502b25d91
Size

1.8MB
MD5

fe32dcfb49c076a97f0c2a71fe9aee86
SHA1

1dcbd11d7b588bf1833ed3a6a9825292dbb76690
SHA256

c057e342736e4cbea5d5c9d6463af60e2cee2eb8829f5c7df1c86cc502b25d91
SHA512

2656db84a3b00d7b739911725b933cd6a5f64f3945907b0781153e8c01c1e53c1914bf188744be720713c982cb589d1cc151c2b5b0fc978722cfdb180d5214b7
SSDEEP

49152:cn5cyiaWRIEmvX/H8yNo931ugHEGWKKs1c:aGtMX/H8yu931uYj5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c057e342736e4cbea5d5c9d6463af60e2cee2eb8829f5c7df1c86cc502b25d91

Files

c057e342736e4cbea5d5c9d6463af60e2cee2eb8829f5c7df1c86cc502b25d91
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xghmicbn
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

itnaczrl
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE