fa891af4e0a2facf1fee5b4b4140887fd9dc2aa244b1b765928b4e29d86c3552 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa891af4e0a2facf1fee5b4b4140887fd9dc2aa244b1b765928b4e29d86c3552
Size

59KB
MD5

e43de1ecd4a244b8c2e52060a784d3d7
SHA1

7e23945ad85510fc05d614cad42e314d0e36c3a2
SHA256

fa891af4e0a2facf1fee5b4b4140887fd9dc2aa244b1b765928b4e29d86c3552
SHA512

fd218c8f92dd32b5c8d2c4997c6e313cd244522c793062014e4f7ea87fc7e4deb4f10d2ac58dea0dd74087692849f21c38b3dcbe9eba02922d71e8a928521262
SSDEEP

768:Hu1X3kAwm/X0gN3eKX6wVcU28wYbrOvXjM930DU2XhSJJRTV3T4ZJjpy7XV9Ocfp:4s4wzMNjLZGJjpCfUYawhh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa891af4e0a2facf1fee5b4b4140887fd9dc2aa244b1b765928b4e29d86c3552

Files

fa891af4e0a2facf1fee5b4b4140887fd9dc2aa244b1b765928b4e29d86c3552
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fldo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.l1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ