accf902e6d006915dd578e56da0bab60c8f59dd0d22be204833743c89a6e7781 | Triage

Sharing

General

Target

accf902e6d006915dd578e56da0bab60c8f59dd0d22be204833743c89a6e7781
Size

8.2MB
MD5

4e106b54f4afee5229850ccfde6a6ca1
SHA1

5cc7ff11104e16c59b0c1cfd86c7572bc924d498
SHA256

accf902e6d006915dd578e56da0bab60c8f59dd0d22be204833743c89a6e7781
SHA512

47aeeefae52c3e680e17ecc5198e9a743a6cdf73ded953cd7b09877e07228092f1dd9d468f22a5ef0a1b5d077397db4cb6683963026906feb36ed83332f06e3c
SSDEEP

98304:W3JADcvdAHcTSHwnU9aO9Y0rvTYTWO9Y0rvTYTuYn:W3JgcvdAHcTSHKUTVTY9VTY7

Score

10^/10

Malware Config

Signatures

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
accf902e6d006915dd578e56da0bab60c8f59dd0d22be204833743c89a6e7781

Files

accf902e6d006915dd578e56da0bab60c8f59dd0d22be204833743c89a6e7781
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\D\StoreD\Laucnher\Launcher v2 _tlbbtk\obj\Release\Launcher.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7.8MB - Virtual size: 7.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 365KB - Virtual size: 365KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ