9c0a14a1a58922233d568e2ff5bf5be302c0f131fb36b952ddcc03dceccd7b71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9c0a14a1a58922233d568e2ff5bf5be302c0f131fb36b952ddcc03dceccd7b71
Size

1.8MB
MD5

dc9d49924a081e9bf727226662c315b6
SHA1

8ecfa954ec8b54924c6c2f67cdb8ec983bea8b32
SHA256

9c0a14a1a58922233d568e2ff5bf5be302c0f131fb36b952ddcc03dceccd7b71
SHA512

c1f5f71a4b8cef82066ab14009ff881c9c1e8915ab151500a649557c49181514fbe81a01f51775f976f5296df2af7d3988e2590ff5a8651652e6aae29af221ee
SSDEEP

49152:CNIr3eDo493jz30b+MhbLXL53a9McH0ltIIKYU+6g75zgno:mlyNLbBaycHcIIKreVz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9c0a14a1a58922233d568e2ff5bf5be302c0f131fb36b952ddcc03dceccd7b71

Files

9c0a14a1a58922233d568e2ff5bf5be302c0f131fb36b952ddcc03dceccd7b71
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nkixaogx
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

twmygnoj
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE