127426ca7457f130bbfd659f582dfd46d9403a81f5748ee1bf3d34b2f53473de | Triage

Sharing

Copy URL Twitter E-mail

General

Target

127426ca7457f130bbfd659f582dfd46d9403a81f5748ee1bf3d34b2f53473de
Size

2.3MB
MD5

4661edd277b5b57153c6a28a387ff64f
SHA1

33163f0f4603bbc251fb5d8d7fc9f66e8dca4551
SHA256

127426ca7457f130bbfd659f582dfd46d9403a81f5748ee1bf3d34b2f53473de
SHA512

ff6242612916d61bd571e4aa6b11df14442ddca9b01e45f44a6cf7c6426d176e6a4c4ac7b25a7bf2058d8898dd8c4fd98248a0a68b5d0669239bc70d84ddb662
SSDEEP

49152:+qkDRwZU5457Z6dtibSv5jINJjVr3QXoEtLMSYoQ/cHOaPx6R+6ZF4JRh+j:+qkDiZ17itY25MjVrAAy5fCzZFP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
127426ca7457f130bbfd659f582dfd46d9403a81f5748ee1bf3d34b2f53473de

Files

127426ca7457f130bbfd659f582dfd46d9403a81f5748ee1bf3d34b2f53473de
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 685KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

misdsjqz
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ywpxbdin
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE