671463a56c13c3a9a078fb2311b7303c8811efd48bdd2d6fc00c75ad517a916a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

671463a56c13c3a9a078fb2311b7303c8811efd48bdd2d6fc00c75ad517a916a
Size

7.1MB
MD5

313c69e3eb5020a355e29ef72bbaf1fb
SHA1

086af6e30e0c06d28fee2264c4eacbc9e26874a2
SHA256

671463a56c13c3a9a078fb2311b7303c8811efd48bdd2d6fc00c75ad517a916a
SHA512

eb2662fc0996382f5f8504048a4acfc8b04b98f26aec9ba65f752aeb211e3dec28318d93b2487759889fbe421c98ca3305be732ba3003314c016e8bdc2fb5509
SSDEEP

196608:C4THU0ZeqeOQYBKkp+oEd8VLM8maqNjjFrqvoiuZqFx:fT00oqe3aEd+LMvaSHFrbO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
671463a56c13c3a9a078fb2311b7303c8811efd48bdd2d6fc00c75ad517a916a

Files

671463a56c13c3a9a078fb2311b7303c8811efd48bdd2d6fc00c75ad517a916a
.exe windows:4 windows x86 arch:x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 4.9MB - Virtual size: 11.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

zqvipqag
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aatrahir
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE