55c0bf2ee6253918e1c52f5dd0189ae4d0a14db07190437cb17e0b860c171649 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55c0bf2ee6253918e1c52f5dd0189ae4d0a14db07190437cb17e0b860c171649
Size

4.3MB
MD5

5daa6b78ab7be6551884a9f19fa880c8
SHA1

0ee89ce4c010296aaa7d03377fc17c32bd85e235
SHA256

55c0bf2ee6253918e1c52f5dd0189ae4d0a14db07190437cb17e0b860c171649
SHA512

fce63825f910a68c3b3783a0f24364cee96aa07511bece01c3b0d9faca334aa3705f61a74ca36b143fa5f56b40aec97a208183005c48cea3ad0ba7d0fff8707a
SSDEEP

98304:CeVSbEYcHSt4tgW9n6vLDKu6/uQEvVwK3mpFuRNZys:nSp496vLDKulzVwKAUR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
55c0bf2ee6253918e1c52f5dd0189ae4d0a14db07190437cb17e0b860c171649

Files

55c0bf2ee6253918e1c52f5dd0189ae4d0a14db07190437cb17e0b860c171649
.exe windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 352KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.winlice
Size: - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ