67b07ad0dc260e64d29db57aa48cc674e655ad23bc5717ff193723101d521aeb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67b07ad0dc260e64d29db57aa48cc674e655ad23bc5717ff193723101d521aeb
Size

1.9MB
MD5

a29f653505a01c1f47e2978e7b407c4a
SHA1

38511b15ed7289af36d3e6d679b0e689eb51e774
SHA256

67b07ad0dc260e64d29db57aa48cc674e655ad23bc5717ff193723101d521aeb
SHA512

2ab5dae9e60adc22b9b127da4828866cf3467bc726ae7b35c5454e749c8d5e0db001e4bebb57cb276b850c5dded8adf96467ce4fc8f0ffecfa4a0d6056995ed1
SSDEEP

49152:s1dIC+R2zNsnKvkTgXuquveY+W2o8oT3ezMrl9cekcHhXh9HJUiWUXsmqsqzl87v:sTV+RYNAKvkTgXuquveY+W2o8oT3ezMD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67b07ad0dc260e64d29db57aa48cc674e655ad23bc5717ff193723101d521aeb

Files

67b07ad0dc260e64d29db57aa48cc674e655ad23bc5717ff193723101d521aeb
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\dbs\el\oc\target\x86\ship\postc2r\x-none\cnfnot32.pdb

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c2r
Size: 512B - Virtual size: 340B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ