093e91573c40fa997a33747ff08ae679c982c5ab2e5a7a22150bcd6ffeef0cb8 | Triage

Sharing

General

Target

093e91573c40fa997a33747ff08ae679c982c5ab2e5a7a22150bcd6ffeef0cb8
Size

4.2MB
MD5

38de79a8297d4820e918c635c93570d5
SHA1

691816fed6d10918b014890a7d4ee0fb6dd188b7
SHA256

093e91573c40fa997a33747ff08ae679c982c5ab2e5a7a22150bcd6ffeef0cb8
SHA512

ad6c1eb4bd04f8f35b1d04e26bd6df43ad5dde90dc7fd92aad0393a6b44d1b83a608c2b510446b77f808fad37c3ec39844606eddb8e0f702c85b8e557dee274c
SSDEEP

98304:eG2vAwHQRRFj2pUhBGg7XEdHmIpAephqw+Q:oBHQRRt2pU//UdHD75

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
093e91573c40fa997a33747ff08ae679c982c5ab2e5a7a22150bcd6ffeef0cb8

Files

093e91573c40fa997a33747ff08ae679c982c5ab2e5a7a22150bcd6ffeef0cb8
.exe windows:4 windows x86 arch:x86

a7e3e5361e6838308f3f0d9da61498d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gfawin23.ocx

ord5

Sections

.text
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ