d092c5cc4f00b87cb68740cf155ddcc12f229e95db37cef760bf78d82813d859 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d092c5cc4f00b87cb68740cf155ddcc12f229e95db37cef760bf78d82813d859
Size

1.9MB
MD5

63d46a5669cb902ff39930f2f403fe9f
SHA1

535c8a9dc176d6994caa67ae81d3b29f7501f1f4
SHA256

d092c5cc4f00b87cb68740cf155ddcc12f229e95db37cef760bf78d82813d859
SHA512

471a013e3d3696b9e9c1f06e36b5c7382a97dbebfbbf022e7cc36c9a4d624be30b7057aee393168f1975501ae0b67302b39ee1098c6654cf74c8a21461977662
SSDEEP

49152:bKMJDKpl1FfAZNv+lzgU/2NVMLgM7rEye:bKM9SHtJB/2NVML/1e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d092c5cc4f00b87cb68740cf155ddcc12f229e95db37cef760bf78d82813d859

Files

d092c5cc4f00b87cb68740cf155ddcc12f229e95db37cef760bf78d82813d859
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

tslqpssc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sdmduwkz
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE